Toward a Multi-Tenancy Authorization System for Cloud Services

被引：58

作者：

Calero, Jose M. Alcaraz ^{[1
,2
]}

Edwards, Nigel ^{[1
]}

Kirschnick, Johannes ^{[1
]}

Wilcock, Lawrence ^{[1
]}

Wray, Mike ^{[1
]}

机构：

[1] Hewlett Packard Labs, Automated Infrastruct Lab, Mississauga, ON, Canada

[2] Univ Murcia, E-30001 Murcia, Spain

来源：

IEEE SECURITY & PRIVACY | 2010年 / 8卷 / 06期

关键词：

D O I：

10.1109/MSP.2010.194

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

Cloud computing presents new security challenges to control access to information in cloud services. This article describes an authorization model suitable for cloud computing that supports hierarchical role-based access control, path-based object hierarchies, and federation. The authors also present an authorization system architecture for implementing the model. In particular, they provide some technical implementation details, together with performance results from the prototype. They also describe security, privacy, and trust management aspects for the authorization system. © 2006 IEEE.

引用

页码：48 / 55

页数：8

共 6 条

[1]

Ferraiolo D. F., 2001, ACM Transactions on Information and Systems Security, V4, P224, DOI 10.1145/501978.501980

[2]

Fielding R.T., 2000, ARCHITECTURAL STYLES

[3]

Hayes B, 2008, COMMUN ACM, V51, P9, DOI [10.1145/1364782.1364786, 10.1145/1364782.1364789]

[4] What's Inside the Cloud? An Architectural Map of the Cloud Landscape [J].

Lenk, Alexander ;

Klems, Markus ;

Nimis, Jens ;

Tai, Stefan ;

Sandholm, Thomas .

CLOUD: 2009 ICSE WORKSHOP ON SOFTWARE ENGINEERING CHALLENGES OF CLOUD COMPUTING, 2009, :23-+

[5] Privacy-Aware Role-Based Access Control [J].

Ni, Qun ;

Bertino, Elisa ;

Lobo, Jorge ;

Calo, Seraphin B. .

IEEE SECURITY & PRIVACY, 2009, 7 (04) :35-43

[6]

Sandhu R., 2000, Symposium on Access Control Models and Technologies: Proceedings of the fifth ACM workshop on Role-based access control, V26, P47, DOI 10.1145/344287.344301

← 1 →