1                                    Framework and requirements for cloud computing


                                                     Appendix IV


                                             Inter-cloud security aspects
                            (This appendix does not form an integral part of this Recommendation.)


            This appendix provides important aspects to be considered regarding inter-cloud security matters.

            One important aspect is the multiple and sometimes complicated CSP and CSC inter-cloud relationships such
            as  those  described  in  clause  7  of  this  Recommendation.  For  these  multiple  inter-cloud  relationships,
            appropriate secured mechanisms should be supported during the peer CSPs interactions such as the services
            request phase (e.g., access control), service usage phase as well as the security of network connectivity
            between the CSPs.
            Other aspects to be considered include:
            –       Establishment  of  a  trust  relationship  between  CSPs  is  important  given  that  the  multiple  CSPs
                    involved  in  inter-cloud  may  be  administrated  by  different  parties.  In  case  of  an  inter-cloud
                    federation, the involved CSPs may establish trust relationships among them prior to any interactions
                    between them or during inter-cloud interactions (e.g., service requests between CSPs);
            –       CSC profiles may be shared among the CSPs involved in the federation. In this case the CSC profile
                    should be handled in a secure manner and in respect of privacy rules and regulations.
























































            314