Powered by OpenAIRE graph
Found an issue? Give us feedback
image/svg+xml art designer at PLoS, modified by Wikipedia users Nina, Beao, JakobVoss, and AnonMoos Open Access logo, converted into svg, designed by PLoS. This version with transparent background. http://commons.wikimedia.org/wiki/File:Open_Access_logo_PLoS_white.svg art designer at PLoS, modified by Wikipedia users Nina, Beao, JakobVoss, and AnonMoos http://www.plos.org/ Estudo Geralarrow_drop_down
image/svg+xml art designer at PLoS, modified by Wikipedia users Nina, Beao, JakobVoss, and AnonMoos Open Access logo, converted into svg, designed by PLoS. This version with transparent background. http://commons.wikimedia.org/wiki/File:Open_Access_logo_PLoS_white.svg art designer at PLoS, modified by Wikipedia users Nina, Beao, JakobVoss, and AnonMoos http://www.plos.org/
Estudo Geral
Master thesis . 2022
Data sources: Estudo Geral
addClaim

Assurance and Compliance of Security Policies in Cloud-Native Environments

Authors: Machado, José Gabriel Couceiro de Carvalho;

Assurance and Compliance of Security Policies in Cloud-Native Environments

Abstract

A computação baseada na Cloud pode ser vista como a entrega de serviços hospedados na internet, nomeadamente software, hardware e armazenamento, pela Internet. As vantagens de uma implementação rápida, flexibilidade, custos iniciais baixos e escalabilidade tornaram a Cloud Computing virtualmente presente entre organizações de todo o tipo de dimensão.Com um grande avanço na tecnologia, também são trazidos múltiplos potenciais riscos para as organizações e é aí que entra a segurança na Cloud. A segurança na Cloud é uma responsabilidade compartilhada entre o provedor dos serviços Cloud e o cliente. Refere-se às tecnologias, políticas, controlos e serviços que protegem os dados, as aplicações e a infraestrutura na Cloud contra possíveis ameaças.Uma das melhores medidas para aprimorar a segurança na Cloud, é a definição de políticas de segurança. As políticas de segurança ajudam a minimizar o risco de fuga ou perda de dados, bem como protegem contra possíveis utilizadores internos ou externos, mal-intencionados. Estas políticas também definem diretrizes, práticas recomendadas e ajudam a garantir a conformidade.Este trabalho apresenta uma pesquisa acerca das melhores ferramentas/serviços disponíveis para definir políticas de segurança para um ambiente Cloud-Native, uma pesquisa acerca das políticas de segurança mais adequadas a serem implementadas para este cenário, de forma a aprimorar a segurança no ambiente, assim como o processo de configuração necessário para a integração das políticas de segurança com a infraestrutura existente.

Cloud computing can be seen as the delivery of hosted services, including software, hardware, and storage, over the internet. The advantages of rapid deployment, flexibility, low upfront costs, and scalability have made cloud computing virtually present among organizations of all sizes.Of course, with this huge advance in technology, also comes a lot of potential risks for organizations and that's where cloud-security comes in. Cloud security is a shared responsibility between the cloud provider and the customer. It refers to the technologies, policies, controls, and services that protect data, applications, and cloud infrastructure from threats.One of the best measures to improve cloud security is to define security policies across the technology stack. Security policies will minimize the risk of data leak or data loss as well as protect against potential malicious internal and external users. These policies also set guidelines, best practices, and help ensure compliance. This work presents a research about the best tools/services to define security policies for a Cloud-Native environment as well as a research about the most significant and suitable security policies to be implemented for this scenario in order to improve security in the environment. It also presents the necessary process for the integration of security policies with the existing infrastructure. The entire process is covered, from the process of defining policies to its assignment and functionality validation.

Dissertação de Mestrado em Segurança Informática apresentada à Faculdade de Ciências e Tecnologia

Country
Portugal
Related Organizations
Keywords

Security Policies, Cloud Native, Conformidade, Políticas de Segurança, Azure Policy, Cloud, Cloud Security, Compliance

  • BIP!
    Impact byBIP!
    selected citations
    These citations are derived from selected sources.
    This is an alternative to the "Influence" indicator, which also reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).
    0
    popularity
    This indicator reflects the "current" impact/attention (the "hype") of an article in the research community at large, based on the underlying citation network.
    Average
    influence
    This indicator reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).
    Average
    impulse
    This indicator reflects the initial momentum of an article directly after its publication, based on the underlying citation network.
    Average
Powered by OpenAIRE graph
Found an issue? Give us feedback
selected citations
These citations are derived from selected sources.
This is an alternative to the "Influence" indicator, which also reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).
BIP!Citations provided by BIP!
popularity
This indicator reflects the "current" impact/attention (the "hype") of an article in the research community at large, based on the underlying citation network.
BIP!Popularity provided by BIP!
influence
This indicator reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).
BIP!Influence provided by BIP!
impulse
This indicator reflects the initial momentum of an article directly after its publication, based on the underlying citation network.
BIP!Impulse provided by BIP!
0
Average
Average
Average
Green