A survey on access control mechanisms for cloud computing

Sibai, Rayane El; Gemayel, Nader; Abdo, Jacques Bou; Demerjian, Jacques

doi:10.1002/ett.3720

Cited by 42 publications

(34 citation statements)

References 88 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The access control process has also been optimized to meet the need for high efficiency and lightweight calculation for IoT devices. In [13], the authors comprehensively expound the existing access control mechanisms used in the cloud computing environment, analyze the advantages and disadvantages of these models and application requirements, and evaluate the existing access control mechanisms based on these requirements.…”

Section: Related Workmentioning

confidence: 99%

Access Control Based on Ciphertext Attribute Authentication and Threshold Policy for the Internet of Things

Zhang

et al. 2019

Sensors

View full text Add to dashboard Cite

The development of the Internet of Things has led to great development of data sharing and data interaction, which has made security and privacy more and more a concern for users. How to ensure the safe sharing of data, avoid the leakage of sensitive information, and protect the privacy of users is a serious challenge. Access control is an important issue to ensure the trust of the Internet of Things. This paper proposes an access control scheme based on ciphertext attribute authentication and threshold policy, which uses the identity authentication of hidden attributes and divides the user’s permission grade by setting the threshold function with the user’s attributes. Users obtain different permission grades according to attribute authentication and access data of different sensitivity grades to achieve fine-grained, flexible and secure access to data in the cloud server while protecting personal privacy issues. In addition, when the resource is acquired, the identity and permission joint authentication method is adopted to avoid the collusion attack of the illegal member, which makes the resource access control more secure.

show abstract

Section: Related Workmentioning

confidence: 99%

Access Control Based on Ciphertext Attribute Authentication and Threshold Policy for the Internet of Things

Zhang

et al. 2019

Sensors

View full text Add to dashboard Cite

show abstract

“…Emerging technologies are radically changing the technology and business scenes. The most recent wave dates back to the second half of the 2000s starting with cloud computing [14,36] and the fourth-generation mobile networks (4G) [11,15] and evolving into the internet of things (IoT), blockchain and 5G. Applications used to be imagined in science-fiction movies, such as self-driving cars [60] and ambulance performed telesurgery [77], are becoming possible thanks to the emerging disruptive technologies [69].…”

Section: Introductionmentioning

confidence: 99%

Converged AI, IoT, and blockchain technologies: a conceptual ethics framework

Nehme¹,

Sibai

Abdo

et al. 2021

AI Ethics

Self Cite

View full text Add to dashboard Cite

The convergence of AI, IoT, and blockchain as the next disruptive technology is inevitable. Studying the ethics of these converged technologies is crucial for the steady development and adoption of the applications. Even though this topic is crucial, it is still not yet touched in the literature. This work is the first attempt to tackle this issue by developing a conceptual ethics framework for converged AI, IoT, and blockchain. The framework is based on a systematic literature review and categorizes the ethical issues into three layers namely micro (ethical issue involving the technology itself), meso (ethical issue involving the applications), and macro (ethical issue involving the society and institutions).

show abstract

“…When users store their private data in a cloud server, they lose control of their data. To ensure privacy, it is necessary to design security mechanisms and architectures to effectively protect the private data stored in the cloud [1]- [3].…”

Section: Introductionmentioning

confidence: 99%

Tenant-Led Ciphertext Information Flow Control for Cloud Virtual Machines

Zhang

Yang

et al. 2021

IEEE Access

View full text Add to dashboard Cite

When users upload their private data to the cloud, they lose control of the data stored in the cloud server. If the cloud system cannot provide an effective security mechanism to protect the data, the consequent data leakage issue will hinder the development of cloud computing. Conventional access control and encryption technologies cannot effectively control the propagation of tenant private data in the system. The mandatory one-way information flow control model is limited by the complexity of the cloud environment, and it is difficult to effectively protect private data stored in the cloud. To solve the above problems, this article proposes a tenant-led ciphertext information flow control method for cloud virtual machines. Through the design of a decentralized information flow control security policy, a secret-domain key management scheme, and a multi-ID-based threshold encryption scheme, the information flow control strategies of taint infection, secret-level reduction, and ability propagation are realized in a ciphertext form, which can effectively prevent malicious users inside and outside the system from illegally reading private data. The feasibility of this method is verified by a security proof and an experiment.INDEX TERMS Cloud computing, information flow control, information flow encryption, data protection.

show abstract

A survey on access control mechanisms for cloud computing

Cited by 42 publications

References 88 publications

Access Control Based on Ciphertext Attribute Authentication and Threshold Policy for the Internet of Things

Access Control Based on Ciphertext Attribute Authentication and Threshold Policy for the Internet of Things

Converged AI, IoT, and blockchain technologies: a conceptual ethics framework

Tenant-Led Ciphertext Information Flow Control for Cloud Virtual Machines

Contact Info

Product

Resources

About