Cloud Computing Patterns, Mechanisms > Data Management and Storage Device Patterns > Cloud Storage Device Masking
Cloud Storage Device Masking (Cope, Erl)
How can data stored on a cloud storage device be isolated to specific consumers?
Problem
Data stored in a shared cloud environment can be vulnerable to unauthorized access by other cloud consumers.
Solution
A solution is implemented to isolate each cloud storage device from being presented to or accessed by unauthorized cloud consumers.
Application
A LUN masking mechanism can enforce defined policies at the physical storage array in order to prevent unauthorized cloud consumers from accessing a specific cloud storage device in a shared cloud environment.
Compound Patterns
Burst In, Burst Out to Private Cloud, Burst Out to Public Cloud, Cloud Authentication, Cloud Balancing, Elastic Environment, Infrastructure-as-a-Service (IaaS), Isolated Trust Boundary, Multitenant Environment, Platform-as-a-Service (PaaS), Private Cloud, Public Cloud, Resilient Environment, Resource Workload Management, Secure Burst Out to Private Cloud/Public Cloud, Software-as-a-Service (SaaS)
LUN masking policies can be enforced by a mechanism at Physical Storage Array A.
This pattern is covered in CCP Module 14: Advanced Cloud Storage.
For more information regarding the Cloud Certified Professional (CCP) curriculum, visit www.arcitura.com/ccp.
The architectural model upon which this design pattern is based is further covered in:
Cloud Computing Design Patterns by Thomas Erl, Robert Cope, Amin Naserpour
(ISBN: 9780133858563, Hardcover, ~ 528 pages)
For more information about this book, visit www.arcitura.com/books.