A Cross Tenant Access Control (CTAC) Model for Cloud Computing: Formal Specification and Verification

Alam, Quratulain; Malik, Saif Ur Rehman; Akhunzada, Adnan; Choo, Kim‐Kwang Raymond; Tabbasum, Saher; Alam, Mansaf

doi:10.1109/tifs.2016.2646639

Cited by 40 publications

(14 citation statements)

References 19 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…With continuous customization and data accumulation between copies, the number of users accessing data online at the same time may become more and more, resulting in higher visits of certain rows in the node's basic table. In order to avoid problems caused by increased access to certain cloud data, unbalanced model loads, and increased average request waiting time, the number of copy must be properly adjusted to disperse the heat to improve the availability of cloud computing data to ensure the stability of the operating environment of the model [5,6]. In the sharing architecture of cloud computing shared database, all copy data are stored in the shared basic table and extended table mode.…”

Section: Optimization Of Cloud Computing Data Copy Quantitymentioning

confidence: 99%

Parametric model construction of solid mechanics based on wireless environment and cloud computing mode

Jian

Song

Huang

2020

J Wireless Com Network

View full text Add to dashboard Cite

Traditional parametric models of solid mechanics have disadvantages such as poor lightweight level of cloud data and low integrity of operations of solid mechanics. To solve the above problems, a parametric model for solid mechanics in engineering research based on cloud computing models is designed. By calculating the number of cloud data copy optimizations, the upper limit of resources required for engineering research is estimated, and the specific values is assessed by continuously cycling the demand, so as to complete the basic conflict analysis, and set up a cloud computing engineering research environment. On this basis, the modeling index is selected. By analyzing the sensitivity of the index, the purpose of optimizing the modeling parameters is achieved, and a new solid mechanics parametric model is constructed. Analyzing and contrasting the experimental data shows that after applying the parametric model of solid mechanics in the engineering research based on the cloud computing model, the lightweight level of cloud data can be increased by up to 24 levels, and the operational integrity of solid mechanics can be increased by about 30%.

show abstract

Section: Optimization Of Cloud Computing Data Copy Quantitymentioning

confidence: 99%

Parametric model construction of solid mechanics based on wireless environment and cloud computing mode

Jian

Song

Huang

2020

J Wireless Com Network

View full text Add to dashboard Cite

show abstract

“…It deals with the growing trend of cloud computing technology with healthcare records. A cloud resource mediation service model is proposed in [8]. It plays as a trusted third party role among different tenants using the cloud.…”

Section: Related Workmentioning

confidence: 99%

Secure Social Network Based Healthcare

B*,

Sellam

2019

IJITEE

View full text Add to dashboard Cite

Healthcare system holds a huge amount of data due to the number of tests taken by the patients and are maintained in physical files or digital files in form of records. At the end of the treatment, a discharge summary of the files will be sent along with the patients. All the records of the patients are maintained in the hospital by MRD (Medico Record Department). Maintanence of records are of very high cost and data security, integrity should be maintained. When patients migrate from one hospital to another, they ought to provide their past records to the doctor for diagnosis. There is a very high probability for the patients to miss their records after many years. A social network based system can be developed in which the patient’s data is stored in cloud and can be shared among the healthcare centres. Each hospital can send requests regarding a patients’s past records to other hospital and records can be retrieved. This helps doctors to have a greater incite on the reports, and repeated tests are avoided for the search of the missing information. As medical records are very sensitive, security and privacy concerns are high. To secure data, blockchain is used in which the data are stored in off-chain and their hashes are stored on-chain. The data in off-chain are encrypted using Advanced Encryption Standard(AES).

show abstract

“…In most of these works, cloud-related user-level security properties are not considered. There are some efforts (e.g., [36,107,3,40]) towards proposing multi-domain/tenant access control models. Gouglidis et al [41] utilize model-checking to verify custom extensions of RBAC with multi-domain against security properties.…”

Section: Related Workmentioning

confidence: 99%

Proactive Security Auditing in Clouds

Majumdar

Madi²,

Wang³

et al. 2019

Cloud Security Auditing

View full text Add to dashboard Cite

Cloud computing is emerging as a promising IT solution for enabling ubiquitous, convenient, and on-demand accesses to a shared pool of configurable computing resources. However, the widespread adoption of cloud is still being hindered by the lack of transparency and accountability, which has traditionally been ensured through security auditing techniques. Security auditing in the cloud poses many unique challenges in data collection and processing (e.g., data format inconsistency and lack of correlation due to the heterogeneity of cloud infrastructures), and in verification (e.g., prohibitive performance overhead due to the sheer scale of cloud infrastructures and need of runtime verification for the dynamic nature of cloud). To this extent, existing security auditing solutions can mainly be categorized into three types: retroactive, intercept-and-check and proactive. The retroactive auditing approach is the traditional auditing technique, which audits after the fact and cannot prevent irreversible damages (e.g., leakage of sensitive information and denial of service attacks). The intercept-and-check approach offers runtime auditing and performs all the auditing steps after the occurrence of a critical event (i.e., which may potentially violate a security property). However, this approach results significant delay in responding each critical event. On the other hand, the existing proactive approach requires the changes (in the cloud configurations) planned for the future in advance to verify its compliance; however, this approach is not practical, because the future change plan is not always available due to cloud's dynamic and ad-hoc nature. In this thesis, we address all the above-mentioned limitations of the existing works by proposing a proactive security auditing system, which potentially can prevent irreversible damages, respond in significantly less time and offer a practical approach without requiring any future change plan. To this purpose, we conduct our work into three main phases. During the first phase, we propose a runtime security auditing system for the user-level of the cloud; where our proposed system audits wide range of security properties relevant to different authentication and authorization mechanisms, such as role-based access control (RBAC), attribute-based access control (ABAC) and single sign-on (SSO), and enhances the existing intercept-and-check solutions by adopting an incremental approach to improve the efficiency. In the second phase of our work, we propose a novel approach of proactive security auditing; which leverages the dependency relationship among cloud events and pre-computes the most expensive parts of the auditing process to keep the response time This thesis work is the outcome of collaboration and support of many people, to whom I am sincerely grateful and would like to appreciate their help.At the very beginning, I would like to thank my PhD supervisor Dr. Lingyu Wang. His continuous availability and guidance helped me the most to complete this thesis work. I am gratef...

show abstract

A Cross Tenant Access Control (CTAC) Model for Cloud Computing: Formal Specification and Verification

Cited by 40 publications

References 19 publications

Parametric model construction of solid mechanics based on wireless environment and cloud computing mode

Parametric model construction of solid mechanics based on wireless environment and cloud computing mode

Secure Social Network Based Healthcare

Proactive Security Auditing in Clouds

Contact Info

Product

Resources

About