Eduardo B. Fernandez, Nobukazu Yoshioka and Hironori Washizaki, “Cloud Access Security Broker (CASB): A pattern for accessing secure cloud services,” Proceedings of the 4th Asian Conference on Pattern Languages of Programs (AsianPLoP 2015), March 5-7, 2015, Tokyo, Japan. (to appear)

Companies are using more and more cloud services, especially SaaS. These applications may handle sensitive data and the companies’ IT departments need to manage the security of a potentially large number of applications. Although the service provider may have a strong security infrastructure, the consumer is responsible for the security of the data used in these applications (the provider does not understand the data semantics). A new type of system software has recently appeared that can organize this security management; this is the Cloud Access Security Broker (CASB). A CASB controls access to the resources available to application users and also protects the data from malware. We present a pattern for this type of system. CASBs are an important part of the cloud ecosystems.