The main objective of MUSA is to support the security-intelligent lifecycle management of distributed applications over heterogeneous cloud resources, through a security framework that includes: security-by-design mechanisms to allow application self-protection at runtime, and methods and tools for the integrated security assurance in both the engineering and operation of multi-cloud applications.
The MUSA framework leverages security-by-design, agile and DevOps approaches in multi-cloud applications, and enables the security-aware development and operation of multi-cloud applications. The framework will be composed of:
Who is the project designed for?
The main targeted users are DevOps teams covering four main roles:
The four roles need tools that together can better integrate a seamless assurance of security in the applications.
How will your project benefit the end-user?
The data security incidents in multi-cloud applications will be reduced through the assurance of a secure behaviour of individual cloud-based components and the overall application, even if the data is processed and/or stored by untrustworthy or opaque cloud providers.
The cloud consumers’ trust in clouds will be enhanced by the provision of tools for expressing their security needs and keeping them informed on the security and performance faults of the multiple cloud services in use.
Application developers will be able to model the multi-cloud application, based on the functional and security features on offer in the SLA, as well as to embed application component mechanisms to enforce security at runtime.
System operators will be able to automatically discover and select the best cloud service combinations by balancing performance and security.
Service administrators can assure the secure behaviour of multi-cloud applications and minimize the security risks while keeping the users informed.
Business managers will be able to make better-informed decisions when selecting cloud services.