Issue No. 06 - November/December (2010 vol. 8)
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MSP.2010.194
Jose M. Alcaraz Calero , Hewlett-Packard Labs and the University of Murcia
Nigel Edwards , Hewlett-Packard Labs
Johannes Kirschnick , Hewlett-Packard Labs
Lawrence Wilcock , Hewlett-Packard Labs
Mike Wray , Hewlett-Packard Labs
Cloud computing presents new security challenges to control access to information in cloud services. This article describes an authorization model suitable for cloud computing that supports hierarchical role-based access control, path-based object hierarchies, and federation. The authors also present an authorization system architecture for implementing the model. In particular, they provide some technical implementation details, together with performance results from the prototype. They also describe security, privacy, and trust management aspects for the authorization system.
Cloud computing, security, privacy, authorization, role-based access control, hierarchical RBAC
L. Wilcock, J. Kirschnick, J. M. Calero, N. Edwards and M. Wray, "Toward a Multi-Tenancy Authorization System for Cloud Services," in IEEE Security & Privacy, vol. 8, no. , pp. 48-55, 2010.