TRUSTED PUBLIC INFRASTRUCTURE GRID CLOUD
First Claim
1. A system comprising:
- a first module to facilitate selecting at least two cloud computing component templates from a cloud computing component catalog;
a second module to facilitate defining a connection between the at least two selected cloud computing component templates;
a third module to facilitate assigning a security level and a policy to at least one of the at least two selected cloud computing component templates;
a fourth module to facilitate building a cloud computing component blueprint for the connected cloud computing components, wherein the cloud computing component blueprint includes information regarding the security level and policy assigned to the corresponding cloud computing component template, and the cloud computing component blueprint including information regarding the defined connection; and
a fifth module to facilitate coupling cloud computing components corresponding to the cloud computing component blueprint to a control server.
1 Assignment
0 Petitions
Accused Products
Abstract
Systems and methods of implementing a secured cloud environment allow for design and instantiation of a security policy at the infrastructure level. An example system may comprise a first module to facilitate selecting at least two cloud computing component templates from a cloud computing component catalog. The system may comprise a second module to facilitate defining a connection between the at least two selected cloud computing component templates. The system may comprise a third module to facilitate assigning a security level and a policy to at least one of the at least two selected cloud computing component templates. The system may comprise a fourth module to facilitate building a cloud computing component blueprint.
124 Citations
21 Claims
-
1. A system comprising:
-
a first module to facilitate selecting at least two cloud computing component templates from a cloud computing component catalog; a second module to facilitate defining a connection between the at least two selected cloud computing component templates; a third module to facilitate assigning a security level and a policy to at least one of the at least two selected cloud computing component templates; a fourth module to facilitate building a cloud computing component blueprint for the connected cloud computing components, wherein the cloud computing component blueprint includes information regarding the security level and policy assigned to the corresponding cloud computing component template, and the cloud computing component blueprint including information regarding the defined connection; and a fifth module to facilitate coupling cloud computing components corresponding to the cloud computing component blueprint to a control server.
-
-
2. A system comprising a secured cloud system design studio, an application manager, and a control server, the secured cloud system design studio;
- comprising;
a policy builder that facilitates design of a security policy for a cloud computing component to comply with; a policy importer that facilitates the import of a security policy for a cloud computing component to comply with; a design studio that facilitates the design of a secured cloud computing component to be deployed in a cloud environment, wherein the design of the secured cloud computing component includes instantiating a security policy that the cloud computing component must comply with, and instantiating a security agent that monitors compliance with the security policy, wherein the security agent sends compliance data to the control server; and a cloud computing component catalog, wherein the cloud computing component catalog includes cloud computing component templates that the design studio can use to help facilitate the design of the cloud computing components, and wherein the cloud computing component templates include a template for a secured cloud computing component; the application manager;
comprising;a grid deployer that facilitates deploying a designed cloud computing component; and a compliance reports module that facilitates creating compliance reports, the compliance reports identifying compliance status of a deployed, secured cloud computing component, the compliance reports created as a function of the instantiated security policy and the compliance data; and the control server comprising; a policy distributor, wherein the policy distributor receives information regarding changes in the instantiated security policy to be implemented on a cloud computing component and the policy distributor updates the security policy accordingly. - View Dependent Claims (3, 4, 5, 6, 7, 8)
- comprising;
-
9. A method comprising:
-
selecting at least two cloud computing component templates from a cloud computing component catalog; defining a connection between the at least two selected cloud computing component templates; assigning a security level and a policy to at least one of the at least two selected cloud computing component templates; building a cloud computing component blueprint for each of the selected cloud computing components, wherein the cloud computing component blueprint includes information regarding the security level and policy assigned to the corresponding cloud computing component, and the cloud computing component blueprint includes information regarding the defined connection; and coupling relevant cloud computing components that a corresponding cloud computing component blueprint to a control server. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
-
17. A computer program product comprising:
-
a computer readable storage medium having computer readable program code embodied therewith, the computer program code comprising; computer readable program code configured to select at least two cloud computing component templates from a cloud computing component catalog; computer readable program code configured to define connections between the at least two selected cloud computing component templates; computer readable program code configured to assign security levels and policies to at least one of the at least two selected cloud computing component templates; computer readable program code configured to build a cloud computing component blueprint for each of the selected cloud computing components, wherein the cloud computing component blueprint includes information regarding the security levels and policies assigned to the corresponding cloud computing component, and the cloud computing component blueprint including information regarding the defined connections corresponding to the cloud computing component; and computer readable program code configured to couple relevant cloud computing components with a corresponding cloud computing component blueprint to a control server. - View Dependent Claims (18, 19, 20, 21)
-
Specification