Policy-Aware Provisioning Plan Generation for TOSCA-based Applications

Képes, Kálmán; Breitenbücher, Uwe; Fischer, Markus Philipp; Leymann, Frank; Zimmermann, Michael

Home // SECURWARE 2017, The Eleventh International Conference on Emerging Security Information, Systems and Technologies // View article

Policy-Aware Provisioning Plan Generation for TOSCA-based Applications

Authors:
Kálmán Képes
Uwe Breitenbücher
Markus Philipp Fischer
Frank Leymann
Michael Zimmermann

Keywords: Cloud Computing, Application Provisioning, Security, Policies, Automation

Abstract:
A major challenge in enterprises today is the steadily increasing use of information technology and the required higher effort in terms of development, deployment, and operation of applications. Especially when different application deployment technologies are used, it becomes difficult to comply to non-functional security requirements. Business applications often have to fulfill a number of non-functional security requirements resulting in a complex issue if the technical expertise is insufficient. Therefore, the initial provisioning of applications can become challenging when non-functional requirements have to be fulfilled that arise from different domains and a heterogeneous IT landscape. In this paper, we present an approach and extend an existing deployment technology to consider the issue of security requirements during the provisioning of applications. The approach enables the specification of non-functional requirements for the automated deployment of applications in the cloud without the need for specific technical insight. We introduce a Policy-Aware Plan Generator for Policy-Aware Provisioning Plans that enables the implementation of reusable policy-aware deployment logic within a plug-in system that is not specific to a single application. The approach is based on the Topology and Orchestration Specification for Cloud Applications (TOSCA), a standard that allows the description of composite Cloud applications and their deployment. We prove the technical feasibility of our approach by extending our prototype of our previous work.

Pages: 142 to 149

Copyright: Copyright (c) IARIA, 2017

Publication date: September 10, 2017

Published in: conference

ISSN: 2162-2116

ISBN: 978-1-61208-582-1

Location: Rome, Italy

Dates: from September 10, 2017 to September 14, 2017