Role-based access-control using reference ontology in clouds

Wei Tek Tsai; Qihong Shao

doi:10.1109/ISADS.2011.21

Role-based access-control using reference ontology in clouds

Wei Tek Tsai, Qihong Shao

Computing and Augmented Intelligence, School of (IAFSE-SCAI)

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

42 Scopus citations

Abstract

In cloud computing, security is an important issue due to the increasing scale of users. Current approaches to access control on clouds do not scale well to multi-tenancy requirements because they are mostly based on individual user IDs at different granularity levels. However, the number of users can be enormous and causes significant overhead in managing security. RBAC (Role-Based Access Control) is attractive because the number of roles is significantly less, and users can be classified according to their roles. This paper proposes a RBAC model using a role ontology for Multi-Tenancy Architecture (MTA) in clouds. The ontology is used to build up the role hierarchy for a specific domain. Ontology transformation operations algorithms are provided to compare the similarity of different ontology. The proposed framework can ease the design of security system in cloud and reduce the complexity of system design and implementation.

Original language	English (US)
Title of host publication	Proceedings - 2011 10th International Symposium on Autonomous Decentralized Systems, ISADS 2011
Pages	121-128
Number of pages	8
DOIs	https://doi.org/10.1109/ISADS.2011.21
State	Published - 2011
Event	2011 10th International Symposium on Autonomous Decentralized Systems, ISADS 2011 - Tokyo and Hiroshima, Japan Duration: Mar 23 2011 → Mar 27 2011

Publication series

Name	Proceedings - 2011 10th International Symposium on Autonomous Decentralized Systems, ISADS 2011

Other

Other	2011 10th International Symposium on Autonomous Decentralized Systems, ISADS 2011
Country/Territory	Japan
City	Tokyo and Hiroshima
Period	3/23/11 → 3/27/11

Keywords

Cloud computing
Ontology
Policy
Role-based access control model
Security

ASJC Scopus subject areas

Artificial Intelligence
Control and Systems Engineering

Access to Document

10.1109/ISADS.2011.21

Cite this

Role-based access-control using reference ontology in clouds. / Tsai, Wei Tek; Shao, Qihong.
Proceedings - 2011 10th International Symposium on Autonomous Decentralized Systems, ISADS 2011. 2011. p. 121-128 5741288 (Proceedings - 2011 10th International Symposium on Autonomous Decentralized Systems, ISADS 2011).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Tsai, WT & Shao, Q 2011, Role-based access-control using reference ontology in clouds. in Proceedings - 2011 10th International Symposium on Autonomous Decentralized Systems, ISADS 2011., 5741288, Proceedings - 2011 10th International Symposium on Autonomous Decentralized Systems, ISADS 2011, pp. 121-128, 2011 10th International Symposium on Autonomous Decentralized Systems, ISADS 2011, Tokyo and Hiroshima, Japan, 3/23/11. https://doi.org/10.1109/ISADS.2011.21

@inproceedings{a60fed6b4f3143b8a0803cb01c51d395,

title = "Role-based access-control using reference ontology in clouds",

abstract = "In cloud computing, security is an important issue due to the increasing scale of users. Current approaches to access control on clouds do not scale well to multi-tenancy requirements because they are mostly based on individual user IDs at different granularity levels. However, the number of users can be enormous and causes significant overhead in managing security. RBAC (Role-Based Access Control) is attractive because the number of roles is significantly less, and users can be classified according to their roles. This paper proposes a RBAC model using a role ontology for Multi-Tenancy Architecture (MTA) in clouds. The ontology is used to build up the role hierarchy for a specific domain. Ontology transformation operations algorithms are provided to compare the similarity of different ontology. The proposed framework can ease the design of security system in cloud and reduce the complexity of system design and implementation.",

keywords = "Cloud computing, Ontology, Policy, Role-based access control model, Security",

author = "Tsai, {Wei Tek} and Qihong Shao",

year = "2011",

doi = "10.1109/ISADS.2011.21",

language = "English (US)",

isbn = "9780769543499",

series = "Proceedings - 2011 10th International Symposium on Autonomous Decentralized Systems, ISADS 2011",

pages = "121--128",

booktitle = "Proceedings - 2011 10th International Symposium on Autonomous Decentralized Systems, ISADS 2011",

note = "2011 10th International Symposium on Autonomous Decentralized Systems, ISADS 2011 ; Conference date: 23-03-2011 Through 27-03-2011",

}

TY - GEN

T1 - Role-based access-control using reference ontology in clouds

AU - Tsai, Wei Tek

AU - Shao, Qihong

PY - 2011

Y1 - 2011

N2 - In cloud computing, security is an important issue due to the increasing scale of users. Current approaches to access control on clouds do not scale well to multi-tenancy requirements because they are mostly based on individual user IDs at different granularity levels. However, the number of users can be enormous and causes significant overhead in managing security. RBAC (Role-Based Access Control) is attractive because the number of roles is significantly less, and users can be classified according to their roles. This paper proposes a RBAC model using a role ontology for Multi-Tenancy Architecture (MTA) in clouds. The ontology is used to build up the role hierarchy for a specific domain. Ontology transformation operations algorithms are provided to compare the similarity of different ontology. The proposed framework can ease the design of security system in cloud and reduce the complexity of system design and implementation.

AB - In cloud computing, security is an important issue due to the increasing scale of users. Current approaches to access control on clouds do not scale well to multi-tenancy requirements because they are mostly based on individual user IDs at different granularity levels. However, the number of users can be enormous and causes significant overhead in managing security. RBAC (Role-Based Access Control) is attractive because the number of roles is significantly less, and users can be classified according to their roles. This paper proposes a RBAC model using a role ontology for Multi-Tenancy Architecture (MTA) in clouds. The ontology is used to build up the role hierarchy for a specific domain. Ontology transformation operations algorithms are provided to compare the similarity of different ontology. The proposed framework can ease the design of security system in cloud and reduce the complexity of system design and implementation.

KW - Cloud computing

KW - Ontology

KW - Policy

KW - Role-based access control model

KW - Security

UR - http://www.scopus.com/inward/record.url?scp=79955709135&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=79955709135&partnerID=8YFLogxK

U2 - 10.1109/ISADS.2011.21

DO - 10.1109/ISADS.2011.21

M3 - Conference contribution

AN - SCOPUS:79955709135

SN - 9780769543499

T3 - Proceedings - 2011 10th International Symposium on Autonomous Decentralized Systems, ISADS 2011

SP - 121

EP - 128

BT - Proceedings - 2011 10th International Symposium on Autonomous Decentralized Systems, ISADS 2011

T2 - 2011 10th International Symposium on Autonomous Decentralized Systems, ISADS 2011

Y2 - 23 March 2011 through 27 March 2011

ER -

Role-based access-control using reference ontology in clouds

Abstract

Publication series

Other

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this