Service interruption on Monday 11 July from 12:30 to 13:00: all the sites of the CCSD (HAL, EpiSciences, SciencesConf, AureHAL) will be inaccessible (network hardware connection).
Skip to Main content Skip to Navigation

Application et assurance autonomes de propriétés de sécurité dans un environnement d’informatique en nuage

Abstract : Cloud environnements are heterogeneous and dynamic, which makes them difficult to protect. In this thesis, we introduce a language and an architecture that can be used to express and enforce security properties in a Cloud. The language allows a Cloud user to express his security requirements without specifying how they will be enforced. The language is based on contexts (to abstract the resources) and properties (to express the security requirements). The properties are then enforced through an autonomic architecture using existing and available security mechanisms (such as SELinux, PAM, iptables, or firewalld). This architecture abstracts and reuses the security capabilities of existing mechanisms. A security property is thus defined by a combination of capabilities and can be enforced through the collaboration of several mechanisms. The mechanisms are then automatically configured according to the user-defined properties. Moreover, the architecture offers an assurance system to detect the failure of a mechanism or an enforcement error. Therefore, the architecture can address any problem, for instance by re-applying a property using different mechanisms. Lastly, the assurance system provides an evaluation of the properties enforcement. This thesis hence offers an autonomic architecture to enforce and assure security in Cloud environnements.
Document type :
Complete list of metadata

Cited literature [118 references]  Display  Hide  Download
Contributor : ABES STAR :  Contact
Submitted on : Tuesday, March 1, 2016 - 11:22:06 AM
Last modification on : Monday, May 9, 2022 - 5:44:25 PM
Long-term archiving on: : Tuesday, May 31, 2016 - 10:46:45 AM


Version validated by the jury (STAR)


  • HAL Id : tel-01280846, version 1


Aline Bousquet. Application et assurance autonomes de propriétés de sécurité dans un environnement d’informatique en nuage. Cryptographie et sécurité [cs.CR]. Université d'Orléans, 2015. Français. ⟨NNT : 2015ORLE2012⟩. ⟨tel-01280846⟩



Record views


Files downloads