 |
    |
Policy4TOSCA: A Policy-Aware Cloud Service Provisioning Approach to Enable Secure Cloud Computing
Tim Waizenegger1, Matthias Wieland1, Tobias Binz2, Uwe Breitenbücher2, Florian Haupt2, Oliver Kopp1, Frank Leymann2, Bernhard Mitschang1, Alexander Nowak2, and Sebastian Wagner2
1Institute of Parallel and Distributed Systems, University of Stuttgart, Universitätsstr. 38 70569, Stuttgart, Germany
firstname.lastname@informatik.uni-stuttgart.de
2Institute of Architecture of Application Systems, University of Stuttgart, Universitätsstr. 38 70569, Stuttgart, Germany
firstname.lastname@informatik.uni-stuttgart.de
Abstract. With the growing adoption of Cloud Computing, automated deployment and provisioning systems for Cloud applications are becoming more prevalent. They help to reduce the onboarding costs for new customers as well as the financial impact of managing Cloud Services by automating these previously manual tasks. With the widespread use of such systems, the adoption of a common standard for describing Cloud applications will provide a crucial advantage by enabling reusable and portable applications. TOSCA, a newly published standard by OASIS with broad industry participation provides this opportunity. Besides the technical requirements of running and managing applications in the cloud, non-functional requirements, like cost, security, and environmental issues, are of special importance when moving towards the automated provisioning and management of Cloud applications. In this paper we demonstrate how non-functional requirements are defined in TOSCA using policies. We propose a mechanism for automatic processing of these formal policy definitions in a TOSCA runtime environment that we have developed based on the proposed architecture of the TOSCA primer. In order to evaluate our approach, we present prototypical implementations of security policies for encrypting databases and for limiting the geographical location of the Cloud servers. We demonstrate how our runtime environment is ensuring these policies and show how they affect the deployment of the application.
Keywords: Cloud Computing, TOSCA, Cloud Service, Cloud Management, Policy-Framework, Security, Green-IT, Sustainable Cloud Service
LNCS 8185, p. 360 ff.
lncs@springer.com
© Springer-Verlag Berlin Heidelberg 2013