A Context-Aware Service for Authorizing Multi-cloud Deployments

Abstract

The most recent advancements in cloud computing, highlight the need for supporting deployments on virtualised resources bounded to the data-intensive application requirements and not limited by the strict boundaries of each available cloud provider. Towards this direction, one important challenge is the appropriate protection of the software infrastructure used for automatically performing application components deployment over multi-clouds. Specifically, we discuss the requirements and introduce a novel attribute-based access control mechanism, able to cope with potential cybersecurity threats that may compromise the deployment of multi-cloud applications. We attempt to tackle the authorization issues from two different perspectives; namely, coping with the “access control” to various platform components and the “pre-authorization” of application deployment and data placement actions using multiple cloud providers.