securecsar is a prototype built to secure TOSCA Cloud Service Archives (CSARs). The prototype is part of research work of master's thesis "Securing Cloud Service Archives for Function and Data Shipping in Industrial Environments" done at University of Stuttgart, Germany (IAAS Department). The prototype allows to provide security to TOSCA CSAR by defining policies in CSAR. The prototpye provides security to CSAR by implementing following use-cases.
- encrypt all CSAR artifacts (default case) or individual artifacts in a CSAR
- sign all CSAR artifacts (default case) or individual artifacts in a CSAR
- verify all CSAR artifacts (default case) or individual artifacts in a CSAR
- decrypt all CSAR artifacts (default case) or individual artifacts in a CSAR
The implementation of prototype consists of two projects:
- securecsar-frontend (https://github.com/smalihaider/securecsar-frontend.git) (contains Web based GUI to call REST services)- CURRENT REPOSITORY
- securecsar (https://github.com/smalihaider/securecsar.git) (contains services)
This project contains the following REST endpoints.
- http://hostname:port/securecsar/encrypt
- http://hostname:port/securecsar/sign
- http://hostname:port/securecsar/verify
- http://hostname:port/securecsar/decrypt
You can easily setup the securecsar project using the following steps to deploy securecsar services in a web server (only tested with tomcat 9).
- Checkout this repository.
- Configure "download_file_container" property in configuration file in /src/main/resources. Processed files are temporarily placed here until downloaded by the user.
- Run "mvn package" to create securecsar.war file
- Deploy securecsar.war on the webserver (only tested with tomcat 9).
A Web based graphical user interface to access these REST webservices is also available at https://github.com/smalihaider/securecsar-frontend.git
More information of this prototype is included in scripture of the master's thesis "Securing Cloud Service Archives for Function and Data Shipping in Industrial Environments".