A refined RBAC model for cloud computing

Proceedings - 2012 IEEE/ACIS 11th International Conference on Computer and Information Science, ICIS 2012

Volumn , Issue , 2012, Pages 43-48

  Li, Wei ^a   Wan, Haishan ^b   Ren, Xunyi ^c   Li, Sheng ^b  

^a NOVA SOUTHEASTERN UNIVERSITY   (United States)

^b Shandong Zhongfu Information Industry Co Ltd   (China)

^c NANJING UNIVERSITY OF POSTS AND TELECOMMUNICATIONS   (China)

Author keywords

Cloud computing; Cloud security; Role based access control (RBAC)

Indexed keywords

ACCESS CONTROL MECHANISM; COMPUTING PARADIGM; COMPUTING RESOURCE; DATA ABSTRACTION; JOB FUNCTIONS; LEAST PRIVILEGE; RBAC MODEL; ROLE-BASED ACCESS CONTROL; ROLE-BASED ACCESS CONTROL MODEL; SECURITY IMPLICATIONS; SECURITY PRINCIPLES; SECURITY RISKS; SEPARATION OF DUTY;

ACCESS CONTROL; INFORMATION SCIENCE; SEPARATION;

CLOUD COMPUTING;

EID: 84864074043     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/ICIS.2012.13     Document Type: Conference Paper

References (18)

1. L. M. Vaquero, L. Rodero-Merino, J. Caceres, and M. Lindner. A break in the clouds: towards a cloud definition. ACM SIGCOMM Computer Communication Review, Vol. 39 Issue 1, January 2009, pp. 50-55.
2. National Institute of Science and Technology. The NIST Definition of Cloud Computing (Draft). Retrieved 24 July 2011 from http//csrc.nist.gov/ publications/drafts/800-145/Draft-SP-800-145-cloud-definition.pdf.
3. R. L. Krutz, and R. D. Vines. Cloud Security: A Comprehensive Guide to Secure Cloud Computing. Wiley Publishing, Inc, 2010.
4. M. Jensen, J. Schwenk, N. Gruschka, and L. L. Iacono, On Technical Security Issues in Cloud Computing, 2009 IEEE International Conference on Cloud Computing, pp. 109-116.
5. Cloud Security Alliance. Domain 12: Guidance for Identity & Access Management V2.1, Retrieved 28 July 2011 from https://cloudsecurityalliance.org/ wpcontent/uploads/2011/07/csaguide-dom12-v2.10.pdf.
6. D. Ferraiolo and D.R. Kuhn, "Role Based Access Control, " Proceedings of the 15th Natl. Computer Security Conference, 1992, Baltimore, MD, October 1992, pp. 554-563.
7. D. F. Ferraiolo, R. Sandhu, S. Gavrila, D. R. Kuhn and R. Chadramouli, "Proposed NIST Standard for Role-Based Access Control, " ACM Transactions Information and System Security, Vol. 4, No. 3, August 2001, pp. 224-274.
8. R. Sandhu, E. Coyne, H. Feinstein, and C. Youman, "Role-Based Access Control Models, " IEEE Computer, Vol. 29, No. 2, February 1996, pp. 38-47.
9. J. Bacon, K. Moody and W. Yao, "Access Control and Trust in the Use of Widely Distributed Services, " Proceedings: Middleware 2001, Heidelberg, Germany, November 2001, IEEE, pp. 300-315.
10. M. E. Shin and G. Ahn, "UML-Based Representation of Role-Based Access Control, " Proceedings: IEEE 9th International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises (WET ICE'00), Gaithersburg, Maryland, 2000, IEEE Computer Society, pp. 195-200.
11. E. B. Fernandez and R. Pan, "A Pattern Language for Security Models, " Conference on Pattern Languages of Programs (PLoP) 2001, Retrieved 24 July 2011 from http://citeseerx.ist.psu.edu/viewdoc/download?doi=10.1.1.90. 5898&rep=rep1&type=pdf.
12. W. Li, E. Allen. An Access Control Model for Secure Cluster- Computing Environments. Proceedings of the 38th Hawaii International Conference on System Sciences (HICSS'05). Big Island, HI, January 3-6, 2005, p. 309.
13. G. Boss, P. Malladi, D. Quan, L. Legregni, and H. Hall. Cloud computing. IBM White Paper, 2007, Retrieved 24 July 2011 from http://download.boulder.ibm. com/ibmdl/pub/software/dw/wes/hipods/Cloud-computing-wp-final-8Oct.pdf.
14. D. F. Ferraiolo, R. Sandhu, S. Gavrila, D. R. Kuhn, and R. Chadramouli, "Proposed NIST Standard for Role-Based Access Control, " ACM Transactions Information and System Security, Vol. 4, No. 3, August 2001, pp. 224-274.
15. Extensible Access Control Markup Language (XACML), OASIS, Retrieved 24 July 2011 from http://xml.coverpages.org/xacml.html.
16. M. Armbrust, A. Fox, R. Griffith, A. D. Joseph, R. H. Katz, A. Konwinski, G. Lee, D. A. Patterson, A. Rabkin, I. Stoica, and M. Zaharia, "Above the Clouds: A Berkeley View of Cloud Computing", Tech. Report UCB/EECS-2009-28, EECS Dept., University of Califonia, Berkeley, 2009.
17. W. Li, S. Li, and H. Wan, "An Access Control Mechanism in Cloud Computing Environments, " Proceedings: 2011 National Annual High Performance Computing of China (HPC China 2011). October 2011, Jinan, China, China Computer Federation.
18. Y.Chen, V.Paxson, and R.H.Katz, "What's new about Cloud Computing security", Tech. Report UCB/EECS-2010-5, EECS Dept., University of Califonia, Berkeley, 2010.