Inproceedings3399: Unterschied zwischen den Versionen
Smu (Diskussion | Beiträge) K |
Smu (Diskussion | Beiträge) K |
||
Zeile 28: | Zeile 28: | ||
|Abstract=Cloud storage services and NoSQL systems are optimized for performance and availability. Hence, enterprise-grade features like security mechanisms are typically neglected even though there is a need for them with increased cloud adoption by enterprises. Only Transport Layer Security (TLS) is frequently supported. Furthermore, the standard Transport Layer Security (TLS) protocol offers many configuration options which are usually chosen purely based on chance. | |Abstract=Cloud storage services and NoSQL systems are optimized for performance and availability. Hence, enterprise-grade features like security mechanisms are typically neglected even though there is a need for them with increased cloud adoption by enterprises. Only Transport Layer Security (TLS) is frequently supported. Furthermore, the standard Transport Layer Security (TLS) protocol offers many configuration options which are usually chosen purely based on chance. | ||
− | We argue that in cloud database systems, configuration options should be chosen based on the degree of vulnerability to attacks and security threats as well as on the performance overhead of the respective algorithms. Our contributions | + | We argue that in cloud database systems, configuration options should be chosen based on the degree of vulnerability to attacks and security threats as well as on the performance overhead of the respective algorithms. Our contributions are a benchmarking approach for transparent analysis of the performance impact of various TLS configuration options and a custom TLS socket implementation which offers more fine-grained control over the configuration options chosen. We also use our benchmarking approach to study the performance impact of TLS in Amazon DynamoDB and Apache Cassandra. |
− | |Download=IC2E2014-Performance Overhead TLS.pdf, | + | |Download=IC2E2014-Performance Overhead TLS.pdf, |
|Forschungsgruppe=Ökonomie und Technologie der eOrganisation | |Forschungsgruppe=Ökonomie und Technologie der eOrganisation | ||
}} | }} |
Version vom 16. Januar 2014, 13:01 Uhr
Benchmarking the Performance Impact of Transport Layer Security in Cloud Database Systems
Benchmarking the Performance Impact of Transport Layer Security in Cloud Database Systems
Published: 2014
März
Herausgeber: IEEE
Buchtitel: Proceedings of the 2nd IEEE International Conference on Cloud Engineering (IC2E), IEEE
Verlag: IEEE
Erscheinungsort: Boston, MA
Referierte Veröffentlichung
BibTeX
Kurzfassung
Cloud storage services and NoSQL systems are optimized for performance and availability. Hence, enterprise-grade features like security mechanisms are typically neglected even though there is a need for them with increased cloud adoption by enterprises. Only Transport Layer Security (TLS) is frequently supported. Furthermore, the standard Transport Layer Security (TLS) protocol offers many configuration options which are usually chosen purely based on chance.
We argue that in cloud database systems, configuration options should be chosen based on the degree of vulnerability to attacks and security threats as well as on the performance overhead of the respective algorithms. Our contributions are a benchmarking approach for transparent analysis of the performance impact of various TLS configuration options and a custom TLS socket implementation which offers more fine-grained control over the configuration options chosen. We also use our benchmarking approach to study the performance impact of TLS in Amazon DynamoDB and Apache Cassandra.
Download: Media:IC2E2014-Performance Overhead TLS.pdf
Ökonomie und Technologie der eOrganisation