PUMA

Cloud computing offers enterprises and consumers flexible access to shared computing on a infrastructure level (Infrastructure-as-a-Service), platform level (Platform-as-a-Service) and software level (Software-as-a-Service).

Software-as-a-Service applications are typically shared by multiple customers that preferably use the same application software and the same distributed installation and execution environment. Each customers has many user types in (and outside of) his own organization that need to be supported and verified to ensure correct usage of the application.

A suitable access control mechanism needs to ensure confidentiality, integrity and availability of the SaaS application as a whole. And it is of key importance that the right performance and scaling measures are taken to guarantee the permanent availability of all instances of the application in the shared distributed environment.

PUMA aims to develop a scalable security solution for the management and enforcement of user permissions for Software-as-a-Service applications in a shared (multi-tenant) infrastructure. This solution offers support for essential security requirements, such as confidentiality, integrity and availability.