Artikel in Zeitschrift ART-2019-19

Yussupov, Vladimir; Falazi, Ghareeb; Falkenthal, Michael; Leymann, Frank: Protecting Deployment Models in Collaborative Cloud Application Development.
In: International Journal On Advances in Security. Vol. 12(1&2).
Universität Stuttgart, Fakultät Informatik, Elektrotechnik und Informationstechnik.
S. 79-94, englisch.
IARIA, Juni 2019.
ISSN: 1942-2636.
Artikel in Zeitschrift.
CR-Klassif.D.2.11 (Software Engineering Software Architectures)
D.4.6 (Operating Systems Security and Protection)
KeywordsCollaboration; Security Policy; Confidentiality; Integrity; Deployment Model; Deployment Automation; TOSCA

Profitability of industrial processes today depends on well-timed utilization of new technologies. Development of cloud applications combining cross-domain knowledge from multiple collaborating parties is one common way to enhance manufacturing. Often, such collaborations are not centralized due to outsourcing or rearrangements in organizational structures. Moreover, manual deployment inefficiency and intellectual property issues further tangle the development process of such applications. While the development of deployment models obviates the necessity to manually deploy applications, a way to protect sensitive data in exchanged deployment models is still needed. In this work, we describe the specifics of modeling and enforcement of security requirements for deployment models in the context of decentralized collaborative cloud application development. We provide a stepwise demonstration of how security requirements can be specified and enforced in a collaborative development scenario based on the TOSCA cloud standard. Furthermore, we conceptualize the system architecture, provide details about the implementation of certain approach-specific operations, and discuss the limitations of the approach. Finally, we show the feasibility of the presented concepts via an open-source prototype.

KontaktVladimir Yussupov
Abteilung(en)Universität Stuttgart, Institut für Architektur von Anwendungssystemen
Eingabedatum12. September 2019
   Publ. Institut   Publ. Informatik