The TClouds Platform: From the Concept to the Implementation of Benchmark Scenarios

TClouds was an EU project (2010-2013) targeted at improving the security and the dependability of cloud infrastructures and services, especially for supporting critical applications. During the project, the participants of the consortium developed a platform containing a portfolio of solutions for improving the state of the art in cloud security and dependability. Here we present an overview of these solutions and two examples of how they can be integrated to provide security for critical cloud-based applications.

[1]  Matthias Schunter,et al.  Automated Information Flow Analysis of Virtualized Infrastructures , 2011, ESORICS.

[2]  C. Cachin,et al.  A cloud you can trust , 2011, IEEE Spectrum.

[3]  Alysson Neves Bessani,et al.  State Machine Replication for the Masses with BFT-SMART , 2014, 2014 44th Annual IEEE/IFIP International Conference on Dependable Systems and Networks.

[4]  P. Mell,et al.  SP 800-145. The NIST Definition of Cloud Computing , 2011 .

[5]  Ahmad-Reza Sadeghi,et al.  Client-Controlled Cryptography-as-a-Service in the Cloud , 2013, ACNS.

[6]  Ben W. Glasspoole,et al.  Cross-coupling: The final frontier. , 2011, Nature chemistry.

[7]  Werner Vogels,et al.  Eventually consistent , 2008, CACM.

[8]  Rodrigo Rodrigues,et al.  Efficient middleware for byzantine fault tolerant database replication , 2011, EuroSys '11.

[9]  Mina Deng PHI,et al.  Proof of concept for home healthcare , 2013 .

[10]  Alysson Neves Bessani,et al.  The TClouds architecture: Open and resilient cloud-of-clouds computing , 2012, IEEE/IFIP International Conference on Dependable Systems and Networks Workshops (DSN 2012).

[11]  Johannes Behl,et al.  Providing fault-tolerant execution of web-service-based workflows within clouds , 2012, CloudCP '12.

[12]  Miguel Correia,et al.  DepSky: Dependable and Secure Storage in a Cloud-of-Clouds , 2013, TOS.

[13]  Miguel Correia,et al.  The Final Frontier: Confidentiality and Privacy in the Cloud , 2011, Computer.

[14]  P. Mell,et al.  The NIST Definition of Cloud Computing , 2011 .

[15]  Bruce Schneier,et al.  Secure audit logs to support computer forensics , 1999, TSEC.

[16]  Fred B. Schneider,et al.  Implementing fault-tolerant services using the state machine approach: a tutorial , 1990, CSUR.

[17]  Johannes Behl,et al.  CheapBFT: resource-efficient byzantine fault tolerance , 2012, EuroSys '12.

[18]  Miguel Correia,et al.  On the Efficiency of Durable State Machine Replication , 2013, USENIX Annual Technical Conference.

[19]  Antonio Lioy,et al.  On scalability of remote attestation , 2011, STC '11.

[20]  Ahmad-Reza Sadeghi,et al.  AmazonIA: when elasticity snaps back , 2011, CCS '11.