期刊名称:Indian Journal of Computer Science and Engineering
印刷版ISSN:2231-3850
电子版ISSN:0976-5166
出版年度:2017
卷号:8
期号:5
页码:647-654
出版社:Engg Journals Publications
摘要:Organizations are embracing cloud technologies for elasticity and reduced operational costs. Building publiccloud systems requires significant planning and upfront costs due to hardware and software requirements.Security is challenging in cloud context due to increased attack surface which can result in seriousvulnerabilities if not properly planned. Traditional cryptographic schemes such as PKI help in data protectionbut they involve complexity in management and lack flexibility in designing access control policy. In this paper,we evaluate Attribute-based encryption schemes for logs preservation and assess performance for variousconfigurations in cloud environment viz., OpenStack. OpenStack is a public cloud software which enablesbuilding Infrastructure-as-a-Service platform leveraging the hardware resources, it is large collection ofindependent components tied together to provide unified service to end users.OpenStack Fuel is a testing framework used by many organizations in automating process of deployment,configuration and testing the OpenStack software. In OpenStack setup lot of sensitive information generated byserver components is stored in log files, if the data is not properly preserved it can result in leakage. We useABE schemes for logs preservation as they overcome challenges associated with certificate management and atthe same time provide more flexibility to users compared to traditional cryptosystems. In this paper, we describecloud infrastructure setup using OpenStack and OpenStack Fuel. We provide reference architecture for buildinga security framework based on Attribute-based encryption schemes.
