A hierarchy attribute-based access control model for cloud storage

Luo, Shixin; Liu, Fengmei; Ren, Chao

doi:10.1109/icmlc.2011.6016897

Cited by 7 publications

(4 citation statements)

References 3 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Several approaches have been proposed for access control for cloud computing from different perspectives. Many of them use the cryptographic techniques, such as attribute‐based encryption , encryption‐enhanced temporal access control , and capability‐based cryptographic system . Others specifically addressed the resource virtualization challenges in cloud access control .…”

Section: Related Workmentioning

confidence: 99%

Access control for cloud‐based eHealth social networking: design and evaluation

Bai

Dai

Chung

et al. 2013

Security Comm Networks

View full text Add to dashboard Cite

eHealth is being rapidly deployed. Lower cost and greater productivity attract government and healthcare enterprise to transit from traditional healthcare service to eHealth service. Security and privacy are growing concerns with the widespread deployment of eHealth and the development of next generation of eHealth services. In this paper, we discuss these security problems and propose a high‐level security framework that captures required features in the next‐generation eHealth infrastructure. Our framework consists of the following: (i) an adaptive trust‐aware tag‐based privacy control to specify which data to share and whom to share with. The fine‐grained control of data access is guaranteed; (ii) a decentralized authorization that relies on trust propagation protocol to provide robust and resilient access control enforcement; and (iii) a hybrid trust management mechanism that addresses access control information depository on a cloud server. It enforces user‐defined access control not only in a distributed environment but also in a privacy‐preserving manner so as to minimize the disclosure of privileges and of access policies. Copyright © 2013 John Wiley & Sons, Ltd.

show abstract

Section: Related Workmentioning

confidence: 99%

Access control for cloud‐based eHealth social networking: design and evaluation

Bai

Dai

Chung

et al. 2013

Security Comm Networks

View full text Add to dashboard Cite

show abstract

“…-Shi-Xin, et al [4], propose an access control model to achieve a fine-grained, data confidentiality and scalability via a formal definition of the HABAC model (Hierarchy Attribute-Based Access Control). -Adamov and Hahanov [5], define a security model for individual cyberspace (ICS) protection as a means to ensure a secured user's virtual environment, they establish an analysis of security issues related to ICS and propose a conceptual model for modern security environments.…”

Section: Introductionmentioning

confidence: 99%

“…Consequently, cloud computing paradigm lacks a formal and verifiable model of its basic concepts: service delivery and deployment models, only some technological attempts are realized; for virtualization as it has been done in [2] and [3], for security as in [4], [5] and [6], or for enterprise IT as in [7]. In this work, we adopt, Bigraphical Reactive Systems (BRS), proposed by Milner [8] , as a formalism to specify fundamental aspects of cloud computing.…”

Section: Introductionmentioning

confidence: 99%

Verifying Cloud Systems using a Bigraphical Maude-based Model Checker

Benzadri¹,

Bouanaka²,

Belala³

2014

Proceedings of the International Workshop on Emerging Software as a Service and Analytics

View full text Add to dashboard Cite

Formal methods are system design techniques based on rigorous mathematical models to build software systems. Our aim in this paper is to define formal specifications of cloud systems and offer analysis support to formally model check their inherent properties. Hence, we define a formal semantic framework, based on Bigraphical Reactive Systems (BRS), for specifying cloud architectures and their shape shifting to ensure service availability and quick scalability. Then, we propose a Bigraphical Maude-based Model Checker to formally verify some properties.

show abstract

“…The key component of this system is a proxy server which is responsible for integrating the external storage services from the Internet, offering the new resources to the client computers on the intranet, and securing all data transfers as soon as they leave the trusted enterprise network zone [7].…”

Section: A Proxy Servermentioning

confidence: 99%

A Study of the Use of IDAs in Cloud Storage

Wang¹

2013

IJFCC

View full text Add to dashboard Cite

Abstract-Cloud storage is a model of networked online storage based on cloud computing, and provides users with immediate access to a broad range of resources and applications. Although a lot of cloud storage providers adopt encryption to protect costumer data, but users still suspect the security and privacy of their data. The paper analyzed Information dispersal algorithms (IDAs), and proved that it can better address the issues of confidentiality, integrity and availability of data. On this basis, the paper presented a cloud storage system adopting IDAs, and illustrated its key component and the process of writing file in cloud storage.

show abstract

A hierarchy attribute-based access control model for cloud storage

Cited by 7 publications

References 3 publications

Access control for cloud‐based eHealth social networking: design and evaluation

Access control for cloud‐based eHealth social networking: design and evaluation

Verifying Cloud Systems using a Bigraphical Maude-based Model Checker

A Study of the Use of IDAs in Cloud Storage

Contact Info

Product

Resources

About