FERNANDEZ, G. P.; http://lattes.cnpq.br/6314871111810374; FERNANDEZ, Gabriel Pereira.
Resumen:
Cloud computing has become the IT infrastructure organization established paradigm.
This scenario has turned into reality because of the scale and service specialization advantages possible in a model that allows for computation to be delivered as a service instead of as a product or process. Although, this model requires changing the IT infrastructure artifacts ownership and its administrative permissions and governing rights. Such a characteristic causes deep changes in the threat model and creates fragile trust relationships that often intimidate the immigration of sensitive data holding utilizers to the new form of organization. This work proposes a new security model that fits the new IT organization reality by interpreting the role played by the cloud provisioning service as one that requires skepticism from the user regarding its bonafide. To implement a security model that does not trust the users data to the the cloud provider, we employ the use of current trusted environment code execution technologies, associated to management and deployment tools for cloud infrastructures. This combination constitutes a secure container platform that is adequate lo modern cloud services needs for availability. We demonstrate as well the feasibility of this proposal and offer a methodology to evaluate the platform usage costs to support business decisions.