A new RBAC based access control model for cloud computing

Authors:
Zhuo Tang;Juan Wei;Ahmed Sallam;Kenli Li;Ruixuan Li
Affiliations:
College of Information Science and Engineering, Hunan University, Changsha, China;College of Information Science and Engineering, Hunan University, Changsha, China;College of Information Science and Engineering, Hunan University, Changsha, China;College of Information Science and Engineering, Hunan University, Changsha, China;School of Computer Science and Technology, Huazhong University of Science and Technology, Wuhan, Hubei, China
Venue:
GPC'12 Proceedings of the 7th international conference on Advances in Grid and Pervasive Computing
Year:
2012

Citing 13
Cited 0

Role-Based Access Control Models

Computer
Configuring role-based access control to enforce mandatory and discretionary access control policies

ACM Transactions on Information and System Security (TISSEC)
Temporal hierarchies and inheritance semantics for GTRBAC

SACMAT '02 Proceedings of the seventh ACM symposium on Access control models and technologies
Access Rights Administration in Role-Based Security Systems

Proceedings of the IFIP WG11.3 Working Conference on Database Security VII
Decidability of Safety in Graph-Based Models for Access Control

ESORICS '02 Proceedings of the 7th European Symposium on Research in Computer Security
Administrative scope: A foundation for role-based administrative models

ACM Transactions on Information and System Security (TISSEC)
Administrative scope in the graph-based framework

Proceedings of the ninth ACM symposium on Access control models and technologies
A Generalized Temporal Role-Based Access Control Model

IEEE Transactions on Knowledge and Data Engineering
Beyond proof-of-compliance: security analysis in trust management

Journal of the ACM (JACM)
Security analysis in role-based access control

ACM Transactions on Information and System Security (TISSEC)
On mutually exclusive roles and separation-of-duty

ACM Transactions on Information and System Security (TISSEC)
Secure and efficient access to outsourced data

Proceedings of the 2009 ACM workshop on Cloud computing security
Adaptive security management model in the cloud computing environment

ICACT'10 Proceedings of the 12th international conference on Advanced communication technology

Quantified Score

Hi-index	0.00

Visualization

Abstract

Access Control is an important component of Cloud Computing; specially, User access control management; however, Access Control in Cloud environment is different from traditional access environment and using general access control model can't cover all entities within Cloud Computing, noting that Cloud environment includes different entities such as data owner, end user, and service provider. In this paper, we propose a new access control based on Role-based access control (RBAC) model. This model includes two kind of roles, user role (UR) and owner role (OR); such that, Users get credential from owners to communicate with service provider and to get access permissions of resources. We also discuss the aspects of user access control management, such as authentication, privilege management, and deprovisioning. Moreover, we use administrative scope to update hierarchy when there is a role added or revoked to simplify the user access control management. By applying the model in Cloud environment the results shows that it can reduce the security problems to two classes in the RT [←,∩] role-based trust-management language with a test-paper system.