Data di Pubblicazione:
2021
Citazione:
An Assurance Framework and Process for Hybrid Systems / M. Anisetti, C.A. Ardagna, N. Bena, E. Damiani (COMMUNICATIONS IN COMPUTER AND INFORMATION SCIENCE). - In: E-Business and Telecommunications / [a cura di] M.S. Obaidat, J. Ben-Othman. - [s.l] : Springer Science and Business Media Deutschland GmbH, 2021. - ISBN 978-3-030-90427-2. - pp. 79-101 (( Intervento presentato al 17. convegno ICETE tenutosi a Virtual event nel 2020 [10.1007/978-3-030-90428-9_4].
Abstract:
Security assurance is a discipline aiming to demonstrate that a target system holds some non/functional properties and behaves as expected. These techniques have been recently applied to the cloud, facing some critical issues especially when integrated within existing security processes and executed in a programmatic way. Furthermore, they pose significant costs when hybrid systems, mixing public and private infrastructures, are considered. In this paper, we a present an assurance framework that implements an assurance process evaluating the trustworthiness of hybrid systems. The framework builds on a standard API-based interface supporting full and programmatic access to the functionalities of the framework. The process provides a transparent, non-invasive and automatic solution that does not interfere with the working of the target system. It builds on a Virtual Private Network (VPN)-based solution, to provide a smooth integration with target systems, in particular those mixing public and private clouds and corporate networks. A detailed walkthrough of the process along with a performance evaluation of the framework in a simulated scenario are presented.
Tipologia IRIS:
03 - Contributo in volume
Keywords:
Assurance; Hybrid system; Security; Virtual private network
Elenco autori:
M. Anisetti, C.A. Ardagna, N. Bena, E. Damiani
Link alla scheda completa:
Link al Full Text:
Titolo del libro:
E-Business and Telecommunications