Abstract
The paper proposes a novel comprehensive security paradigm for PaaS clouds where the customer programs are treated as separate processes instead of web service threads, which is the current method. The cloud customer has more flexibility on her programs and data on this new approach. The programs, together with their respective data, are isolated within process containers, which are encrypted storage entities carefully designed to enforce access control, secrecy, integrity and service level agreements.
Original language | English |
---|---|
Pages (from-to) | 345-356 |
Number of pages | 12 |
Journal | Proceedings of the Romanian Academy Series A - Mathematics Physics Technical Sciences Information Science |
Volume | 16 |
Publication status | Published - 2015 |
Keywords
- Cloud
- Isolation
- PaaS
- Process container
- Process-based
- Security