Policy Based Management for Security in Cloud Computing

Waller, Adrian; Sandy, Ian; Power, Eamonn; Aivaloglou, Efthimia; Skianis, C.; Muñoz, Antonio; Maña, Antonio

doi:10.1007/978-3-642-22365-5_16

Cited by 19 publications

(11 citation statements)

References 15 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Plenty of privacy and confidential information from vehicles, roadside infrastructure, and IP cameras are broadcast in the public space. Protecting information security is an essential topic for PC5-based C-V2X deployment, as mentioned in [ 30 , 31 , 32 ]. The country needs a standard to define a security policy.…”

Section: Discussionmentioning

confidence: 99%

PC5-Based Cellular-V2X Evolution and Deployment

Miao

Virtusio

Hua

2021

Sensors

View full text Add to dashboard Cite

C-V2X (Cellular Vehicle-to-Everything) is a state-of-the-art wireless technology used in autonomous driving and intelligent transportation systems (ITS). This technology has extended the coverage and blind-spot detection of autonomous driving vehicles. Economically, C-V2X is much more cost-effective than the traditional sensors that are commonly used by autonomous driving vehicles. This cost-benefit makes it more practical in a large scale deployment. PC5-based C-V2X uses an RF (Radio Frequency) sidelink direct communication for low latency mission-critical vehicle sensor connectivity. Over the C-V2X radio communications, the autonomous driving vehicle’s sensor ability can now be largely enhanced to the distances as far as the network covers. In 2020, 5G is commercialized worldwide, and Taiwan is at the forefront. Operators and governments are keen to see its implications in people’s daily life brought by its low latency, high reliability, and high throughput. Autonomous driving class L3 (Conditional Automation) or L4 (Highly Automation) are good examples of 5G’s advanced applications. In these applications, the mobile networks with URLLC (Ultra-Reliable Low-Latency Communication) are perfectly demonstrated. Therefore, C-V2X evolution and 5G NR (New Radio) deployment coincide and form a new ecosystem. This ecosystem will change how people will drive and how transportation will be managed in the future. In this paper, the following topics are covered. Firstly, the benefits of C-V2X communication technology. Secondly, the standards of C-V2X and C-V2X applications for automotive road safety system which includes V2P/V2I/V2V/V2N, and artificial intelligence in VRU (Vulnerable Road User) detection, object recognition and movement prediction for collision warning and prevention. Thirdly, PC5-based C-V2X deployment status in global, especially in Taiwan. Lastly, current challenges and conclusions of C-V2X development.

show abstract

Section: Discussionmentioning

confidence: 99%

PC5-Based Cellular-V2X Evolution and Deployment

Miao

Virtusio

Hua

2021

Sensors

View full text Add to dashboard Cite

show abstract

“…Securing cloud infrastructures is a challenge largely explored in the literature. For instance, [3] highlights several challenges related to policy-based security management, such as the specification of a cloud security policy, the assurance of the security decisions, as well as the the certification of security components in that context. In the same manner, the TCloud framework [4] proposes to enforce a security policy with a hardened cloud stack.…”

Section: Related Workmentioning

confidence: 99%

Unikernel-based approach for software-defined security in cloud infrastructures

Compastié

Badonnel

Festor

et al. 2018

NOMS 2018 - 2018 IEEE/IFIP Network Operations and Management Symposium

View full text Add to dashboard Cite

The heterogeneity of cloud resources implies substantial overhead to deploy and configure adequate security mechanisms. In that context, we propose a software-defined security strategy based on unikernels to support the protection of cloud infrastructures. This approach permits to address management issues by uncoupling security policy from their enforcement through programmable security interfaces. It also takes benefits from unikernel virtualization properties to support this enforcement and provide resources with low attack surface. These resources correspond to highly constrained configurations with the strict minimum for a given period. We describe the management framework supporting this software-defined security strategy, formalizing the generation of unikernel images that are dynamically built to comply with security requirements over time. Through an implementation based on MirageOS, and extensive experiments, we show that the cost induced by our security integration mechanisms is small while the gains in limiting the security exposure are high.

show abstract

“…In particular [4] highlights several challenges related to policy-based security management, such as the specification of a cloud security policy, the assurance of the security decisions, as well as the certification of security components in that context. In the same manner, the TCloud framework [5] proposes to enforce a security policy with a hardened cloud stack.…”

Section: Related Workmentioning

confidence: 99%

Towards a Software-Defined Security Framework for Supporting Distributed Cloud

Compastié

Badonnel

Festor

et al. 2017

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Abstract. Cloud computing provides new facilities for building elaborated services hosted through various infrastructures over the Internet. In the meantime, these ones pose new important challenges in terms of security due to their intrinsic nature. We propose in this paper to detail a software-defined security framework supporting the protection of these services, in the context of distributed cloud. These ones require security mechanisms able to cope with their multi-tenancy and multi-cloud properties. The foundations of this framework rely on the software-defined logic to express and propagate security policies to the considered cloud resources, and on the autonomic paradigm to dynamically configure and adjust these mechanisms to distributed cloud constraints. In particular, we describe the main components and protocols of this software-defined security framework, evaluate this one and discuss implementation considerations, through the analysis of different realistic scenarios.

show abstract

Policy Based Management for Security in Cloud Computing

Cited by 19 publications

References 15 publications

PC5-Based Cellular-V2X Evolution and Deployment

PC5-Based Cellular-V2X Evolution and Deployment

Unikernel-based approach for software-defined security in cloud infrastructures

Towards a Software-Defined Security Framework for Supporting Distributed Cloud

Contact Info

Product

Resources

About