Role-based access-control using reference ontology in clouds

Wei Tek Tsai, Qihong Shao

Research output: Chapter in Book/Report/Conference proceedingConference contribution

41 Scopus citations

Abstract

In cloud computing, security is an important issue due to the increasing scale of users. Current approaches to access control on clouds do not scale well to multi-tenancy requirements because they are mostly based on individual user IDs at different granularity levels. However, the number of users can be enormous and causes significant overhead in managing security. RBAC (Role-Based Access Control) is attractive because the number of roles is significantly less, and users can be classified according to their roles. This paper proposes a RBAC model using a role ontology for Multi-Tenancy Architecture (MTA) in clouds. The ontology is used to build up the role hierarchy for a specific domain. Ontology transformation operations algorithms are provided to compare the similarity of different ontology. The proposed framework can ease the design of security system in cloud and reduce the complexity of system design and implementation.

Original languageEnglish (US)
Title of host publicationProceedings - 2011 10th International Symposium on Autonomous Decentralized Systems, ISADS 2011
Pages121-128
Number of pages8
DOIs
StatePublished - May 12 2011
Event2011 10th International Symposium on Autonomous Decentralized Systems, ISADS 2011 - Tokyo and Hiroshima, Japan
Duration: Mar 23 2011Mar 27 2011

Publication series

NameProceedings - 2011 10th International Symposium on Autonomous Decentralized Systems, ISADS 2011

Other

Other2011 10th International Symposium on Autonomous Decentralized Systems, ISADS 2011
CountryJapan
CityTokyo and Hiroshima
Period3/23/113/27/11

Keywords

  • Cloud computing
  • Ontology
  • Policy
  • Role-based access control model
  • Security

ASJC Scopus subject areas

  • Artificial Intelligence
  • Control and Systems Engineering

Fingerprint Dive into the research topics of 'Role-based access-control using reference ontology in clouds'. Together they form a unique fingerprint.

Cite this