Complaint Cloud Computing C3

Compliant Cloud Computing (C3): Architecture and
Language Support for User-driven Compliance

Management in Clouds
Siju.Pavithran
Roll no: 57
S7 Computer Science and Engineering
Government Engineering College

Sreekrishnapuram Palakkad
December 2, 2010
Siju.Pavithran Roll no: 57 S7 Computer Science and EngineeringC3(Government Engineering College Sreekrishnapuram
December 2, 2010Palakkad)
1 / 33
1 Introduction
2 Service Models In Cloud
3 C3:Compliant Cloud Computing
4 Use Case Model for C3
5 C3 Architecture
6 C3 Language Support
7 C3 Technical Architecture And Middleware
8 Related Work
9 Conclusion And Future Scope
10 References
2 / 33
Introduction
Contents
1 Introduction
5 C3 Architecture
8 Related Work
10 References
3 / 33
Introduction
Introduction
Cloud Computing :
promising approach for implementing highly scalable software systems .
Cloud computing allows companies to decrease expensive in-house
computer systems via pay-per-use solutions for computing cycles
requested on-demand.
loopholes:
lack of customized design in clouds.
no guarentee in relation to the storage of data in specified geographical
domains.
clumsy usage of the submitted data only to those intended by the
submitting user.
4 / 33
Service Models In Cloud
Contents
1 Introduction
5 C3 Architecture
8 Related Work
10 References
5 / 33

Cloud computing provides three service models that provide different
levels of control and security. These levels are, in decreasing order of
control and increasing order of security:
Infrastructure as a Service (IaaS);
Platform as a Service (PaaS); and
Software as a Service (SaaS)
6 / 33
C3:Compliant Cloud Computing
Contents
1 Introduction
5 C3 Architecture
8 Related Work
10 References
7 / 33

user-driven compliance management framework,like compliance coming
from laws,internal policies etc.
C3 ensures that the Cloud providers are selected ensuring customizable
compliance with the user requirements, such as, security restrictions.
C3 infrastructure consisting of two major parts:
language concepts to express user requirements and Compliance Level
Agreements (CLAs)
a middleware for the deployment of C3-aware applications,for the
management of CLAs.
8 / 33
Contd....
Once the CLAs are agreed between a Cloud provider and a consumer,
the C3 middleware manages the enactment of CLAs considering
available monitoring information and complying with predefined
security, privacy, and trust issues.
This includes for example information flow restriction considering
geographic and infrastructure affinity or automatic data
fragmentation and aggregation among different Cloud providers.
9 / 33
Use Case Model for C3
Contents
1 Introduction
5 C3 Architecture
8 Related Work
10 References
Siju.Pavithran Roll no: 57 S7 Computer Science and EngineeringC3(Government Engineering College December
Sreekrishnapuram
2, 2010 Palakkad)
10 / 33
T-Systems Deutsche Telekom PSP model can be taken in to

consideration to understand the infrastructure of C3 MODEL.
Sreekrishnapuram
2, 2010 Palakkad)
11 / 33
Kindergarten(kiga) protocol
it include services for the enrolment of children to a particular

kindergarten, absence recording of children, and
monitoring/controlling of kindergartens.
address in particular the following two compliance management
scenarios:
flexible compliance management of sensitive childrens data which is
necessary for the assignment of trained kindergarten teachers.
guarantees that data is only stored in certain geographical regions e.g.,
European Union due to various legal guidelines.
Sreekrishnapuram
2, 2010 Palakkad)
12 / 33
Contd....
Thus, C3 should facilitate the following two compliance management

issues:
Dispersal of data among different protection domains as for example
business and application data, which are dispersed among different
Cloud providers.
Storage of data only in certain geographic areas, and guarantees about
its adequate retention policies, privacy, integrity, and safety.
Sreekrishnapuram
2, 2010 Palakkad)
13 / 33
C3 Architecture
Contents
1 Introduction
5 C3 Architecture
8 Related Work
10 References
Sreekrishnapuram
2, 2010 Palakkad)
14 / 33
C3 Architecture
C3 Application Deployement
A C3-aware Cloud provider can execute applications in compliance

with predefined security, privacy, and trust requirements as defined by
the C3 certification process.
Sreekrishnapuram
2, 2010 Palakkad)
15 / 33
C3 Architecture
C3 Role Model
Each C3 role is exemplified using the KiGa use case.Before an

application can be deployed to a Cloud provider, it has to be created
(i.e. programmed) by an application developer.
Sreekrishnapuram
2, 2010 Palakkad)
16 / 33
C3 Architecture
C3 Application Execution
Here we analyze the execution of the deployed application by a
C3-aware Cloud provider.
We distinguish between three binding scenarios for the Cloud
application execution.
Sreekrishnapuram
2, 2010 Palakkad)
17 / 33
C3 Language Support
Contents
1 Introduction
5 C3 Architecture
8 Related Work
10 References
Sreekrishnapuram
2, 2010 Palakkad)
18 / 33
C3 Language Support
C3 Language Support
the figure above shows the discription about the relation between
domain specific languages(DSLs) and compliance level
agreements(CLAs)
CLAs are extended Service Level Agreements with the elements for
the specification of certifiable and auditable guarantees.Valid CLA
documents are generated using predefined CLA templates.
Sreekrishnapuram
2, 2010 Palakkad)
19 / 33
C3 Language Support
Model Driven DSL Development

the Model Driven Development of DSLs is divided into two parts:
the first part is the definition of a DSL e.g., necessary to specify
different data protection scenarios (upper part of Figure 6 ).
The second part is the transformation of the DSL into the CLA (down
part of Figure 6).
Sreekrishnapuram
2, 2010 Palakkad)
20 / 33
C3 Language Support
Levels Of Abstraction In DSLs
DSLs can provide multiple levels of abstraction to help multiple

stakeholders with different backgrounds and knowledge to express
relations and behaviors of a domain with notations they are familiar
with.
For instance, domain experts do not have to deal with technological
aspects, such as programming APIs or service interface descriptions.
the domain expert decides about the fragmentation method and the
concrete resources necessary to fragment data i.e., concrete Cloud
providers.
the data analyst for example in the caseof a rdbms has to assign
which columns of the data model have to be assigned to which region.
Sreekrishnapuram
2, 2010 Palakkad)
21 / 33
C3 Language Support
Contd....
DSL is seperated into high level and low level. We exemplify the
separation based on KiGas data fragmentation problem.
Sreekrishnapuram
2, 2010 Palakkad)
22 / 33
C3 Language Support
CLA Development:Relation with SLA

Service Level Agreements represent negotiated agreements between
two parties, namely the service consumer and the service provider.
SLAs in computing resource markets specify measurable metrics
example availability, response time, and serviceability.
SLA is a valid CLA. CLAs extend SLAs with the parameters for the
specification of certifiable and auditable objectives in order to provide
some kind of measurement for compliance agreements.
Sreekrishnapuram
2, 2010 Palakkad)
23 / 33
C3 Technical Architecture And Middleware
Contents
1 Introduction
5 C3 Architecture
8 Related Work
10 References
Sreekrishnapuram
2, 2010 Palakkad)
24 / 33

The C3 middleware consists of the two major parts :
A Decision making / deployment component (DCDM).
The Runtime Component being responsible for the enactment of the
CLAs.
Sreekrishnapuram
2, 2010 Palakkad)
25 / 33
Related Work
Contents
1 Introduction
5 C3 Architecture
8 Related Work
10 References
Sreekrishnapuram
2, 2010 Palakkad)
26 / 33
Related Work
Related Work
COMPAS (Compliance-driven Models, Languages, and Architectures

for Services) is an example European Commissions Framework 7
Specific targeted research project (STREP) dealing with compliance
issues of software services to business regulations and design rules.[4]
The European project BREIN: to develop a framework, which will
extend the Grid possibilities by driving their usage inside new target
areas in the business domain[3].
BREIN applies SLA management to Grids, whereas C3 targets CLA
management in Clouds.
Sreekrishnapuram
2, 2010 Palakkad)
27 / 33
Conclusion And Future Scope
Contents
1 Introduction
5 C3 Architecture
8 Related Work
10 References
Sreekrishnapuram
2, 2010 Palakkad)
28 / 33
This was the first attempt by the authors to devise concepts for
Compliant Cloud Computing (C3).
Requirements considering compliance management of security,
privacy, and trust related issues.
Concepts for the languages necessary for the user based requirements
specification (domain specific languages) and for the agreement
specification (compliance level agreement).
The C3 architecture considering application deployment, roles, and
the application execution issues.
Sreekrishnapuram
2, 2010 Palakkad)
29 / 33
Contd....
Finally,the technical architecture for the C3 middleware responsible

for the application deployment execution, negotiation and
enforcement, and compliance level agreements.
In the future ,investigations on various implementation issues
regarding available open source projects in compliance with C3.
Furthermore,concepts for the certification processes of the C3-aware
Cloud providers could be implemented precisely.
Sreekrishnapuram
2, 2010 Palakkad)
30 / 33
References
Contents
1 Introduction
5 C3 Architecture
8 Related Work
10 References
Sreekrishnapuram
2, 2010 Palakkad)
31 / 33
References
References
Amazon Elastic Compute Cloud (Amazon EC2),

http://aws.amazon.com/ec2/ 2010.
Open Cloud manifesto 2009, http://www.opencloudmanifesto.org
2010.
I. Brandic. Towards Self-manageable Cloud Services. RTSOAA 2009.
In conjunction with the 33rd Annual IEEE International Computer
Software and Applications Conference. July 20 - 24, 2009, Seattle,
Washington, USA.
H. M. Frutos, I. Kotsiopoulos. BREIN: Business Objective Driven
Reliable and Intelligent Grids for Real Business, International Journal
of Interoperability in Business Information Systems, Issue 3 (1), 2009.
Compliance-driven Models, Languages, and Architectures for Services
(COMPAS), FP7 http://www.compas-ict.eu/ 2009.
Sreekrishnapuram
2, 2010 Palakkad)
32 / 33
....THANK YOU....
Sreekrishnapuram
2, 2010 Palakkad)
33 / 33

Complaint Cloud Computing C3

Hochgeladen von

Dokumentinformationen

Originaltitel

Copyright

Verfügbare Formate

Dieses Dokument teilen

Dokument teilen oder einbetten

Freigabeoptionen

Stufen Sie dieses Dokument als nützlich ein?

Sind diese Inhalte unangemessen?

Copyright:

Verfügbare Formate

Complaint Cloud Computing C3

Hochgeladen von

Copyright:

Verfügbare Formate

Compliant Cloud Computing (C3): Architecture and

Language Support for User-driven Compliance

Government Engineering College

Service Models In Cloud

C3:Compliant Cloud Computing

C3:Compliant Cloud Computing

Use Case Model for C3

T-Systems Deutsche Telekom PSP model can be taken in to

it include services for the enrolment of children to a particular

Thus, C3 should facilitate the following two compliance management

A C3-aware Cloud provider can execute applications in compliance

Each C3 role is exemplified using the KiGa use case.Before an

Model Driven DSL Development

Levels Of Abstraction In DSLs

DSLs can provide multiple levels of abstraction to help multiple

CLA Development:Relation with SLA

C3 Technical Architecture And Middleware

COMPAS (Compliance-driven Models, Languages, and Architectures

Conclusion And Future Scope

Finally,the technical architecture for the C3 middleware responsible

Amazon Elastic Compute Cloud (Amazon EC2),

Das könnte Ihnen auch gefallen