| Cloud computing is said to be an Industrial Revolution happening after the Internet. But at the same time, it’s not widely used by users because of several security issues due to the large-scale resource sharing.This paper analysed typical security issues in PaaS and introduced existing security solutions recently. And then this paper proposed a novel security container in PaaS. PaaS security container will provide a security deploying and running environment for applications from three aspects: security of applications in PaaS, security of container and networking security of the container.In multi-tenant PaaS, the most important safety principle is application isolation, which means that PaaS should provide a sandbox running environment for multi-tenant applications hosted in the PaaS platform. This paper designed and implemented a new sandbox security model based on Java security model, which provides application resource access control and ensure the efficiency of the system as well. Meanwhile, SDK module gives the applications the ability to access files or Web Services.The PaaS security Container implementes the container safety and networking safety which are designed to provide a safe and stable running environment for applications. Container safety module contains three sub modules:Servlet API access control, centralized management of third-party libraries and exception response interception and packing. Networking safety is mainly achieved by anti-DDoS Firewall. |
PDF Full Text Request