A domain-divided configurable security model for cloud computing-based telecommunication services
- 221 Downloads
Cloud computing emerges as one of the most promising technologies and is widely used in many fields. Cloud computing has been considered as an appropriate environment for telecommunication services. However, more threats appear in the migration of applications and telecommunication services from a traditional computing environment to a cloud platform. Traditional device-centric security systems are not effective as resources in the cloud are out of the users control. Data storage and processing for a telecommunication service in the cloud can be structured as a data service in PaaS (Platform-as-a-Service) level. Upper-level applications exchange data with the data service. In this paper, we propose a domain-divided security model in which different security policies are separately applied for three domains: the data storage domain, the data processing domain and the data transmission domain. In addition, security policies can be configured for upper-level applications based on their security requirements. Experimental results show that our proposed security model is both practical and lightweight as it can provide differentiated security protection for cloud computing-based telecommunication service with a low overhead.
KeywordsTelecommunication service Cloud computing Security model Domain division
This work is supported by National 973 Fundamental Basic Research Program under Grant No. 2014CB340600, National Science Foundation of China under Grant No. 61272072, and Program for New Century Excellent Talents in University Under Grant NCET-13-0241.
- 1.Zhu Z, Gupta P, Wang Q, Kalyanaraman S, Lin Y, Franke H, Sarangi S (2011) Virtual base station pool: towards a wireless network cloud for radio access networks. In: Proceedings of the 8th ACM international conference on computing frontiers. ACM, p 34Google Scholar
- 4.Nkosi M., Mekuria F (2010) Cloud computing for enhanced mobile health applications. In: 2010 IEEE second international conference on cloud computing technology and science (CloudCom). IEEE, pp 629–633Google Scholar
- 5.Ahmed M, Xiang Y (2010) Above the trust and security in cloud computing: a notion towards innovation. In: IEEE/IFIP 2010: proceedings of the IEEE/IFIP 8th international conference embedded and ubiquitous computing 2010. IEEE, pp 723–730Google Scholar
- 6.Cao N, Yang Z, Wang C, Ren K, Lou W (2011) Privacy-preserving query over encrypted graph-structured data in cloud computing. In: 2011 31st International conference on distributed computing systems (ICDCS). IEEE, pp 393–402Google Scholar
- 9.Chen D, Zhao H (2012) Data security and privacy protection issues in cloud computing. In: 2012 International conference on computer science and electronics engineering (ICCSEE), vol 1. IEEE, pp 647–651Google Scholar
- 12.Bellavista P, Carella G, Foschini L, Magedanz T, Schreiner F, Campowsky K (2012) QoS-aware elastic cloud brokering for IMS infrastructures. In: 2012 IEEE symposium on computers and communications (ISCC). IEEE, pp 000157–000160Google Scholar
- 14.Pan W, Duan Y (2010) Research of the application of cloud computing in telecommunication industry. Telecommun Sci 26(6):26–29Google Scholar