The Community for Technology Leaders
RSS Icon
Subscribe
Issue No.06 - November/December (2010 vol.8)
pp: 48-55
Jose M. Alcaraz Calero , Hewlett-Packard Labs and the University of Murcia
Nigel Edwards , Hewlett-Packard Labs
Johannes Kirschnick , Hewlett-Packard Labs
Lawrence Wilcock , Hewlett-Packard Labs
Mike Wray , Hewlett-Packard Labs
ABSTRACT
Cloud computing presents new security challenges to control access to information in cloud services. This article describes an authorization model suitable for cloud computing that supports hierarchical role-based access control, path-based object hierarchies, and federation. The authors also present an authorization system architecture for implementing the model. In particular, they provide some technical implementation details, together with performance results from the prototype. They also describe security, privacy, and trust management aspects for the authorization system.
INDEX TERMS
Cloud computing, security, privacy, authorization, role-based access control, hierarchical RBAC
CITATION
Jose M. Alcaraz Calero, Nigel Edwards, Johannes Kirschnick, Lawrence Wilcock, Mike Wray, "Toward a Multi-Tenancy Authorization System for Cloud Services", IEEE Security & Privacy, vol.8, no. 6, pp. 48-55, November/December 2010, doi:10.1109/MSP.2010.194
REFERENCES
1. B. Hayes, "Cloud Computing," Comm. ACM, vol. 51, no. 7, 2008, pp. 9–11.
2. A. Lenk et al., "What's Inside the Cloud? An Architectural Map of the Cloud Landscape," Proc. Int'l Conf. Software Eng. (ICSE) Workshop on Software Eng. Challenges of Cloud Computing, IEEE CS Press, 2009, pp. 23–31.
3. R. Sandhu, D. Ferraiolo, and R. Kuhn, "The NIST Model for Role-Based Access Control: Towards a Unified Standard," Proc. 5th ACM Workshop Role-Based -Access Control, ACM Press, 2000, pp. 47–63.
4. D.F. Ferraiolo et al., "Proposed NIST Standard for Role-Based Access Control," ACM Trans. Information and System Security, vol. 4, no. 3, 2001, pp. 224–274.
5. Q. Ni et al., "Privacy-Aware Role-Based Access Control," IEEE Security & Privacy, vol. 7, no. 4, 2009, pp. 35–43.
6. R.T. Fielding, "Architectural Styles and the Design of Network-Based Software Architectures," doctoral dissertation, Information and Computer Science Dept., Univ. of California, Irvine, 2000.
15 ms
(Ver 2.0)

Marketing Automation Platform Marketing Automation Tool