Towards an authorization system for cloud infrastructure providers

Jorge Bernal Bernabe; Juan M. Marín Pérez; Jose M. Alcaraz Calero; Félix J. García Clemente; Gregorio Martínez Pérez; Antonio F. Gomez Skarmeta

Towards an authorization system for cloud infrastructure providers

Jorge Bernal Bernabe
, Juan M. Marín Pérez
, Jose M. Alcaraz Calero
, Félix J. García Clemente
, Gregorio Martínez Pérez
, Antonio F. Gomez Skarmeta

Research output: Chapter in Book/Published conference output › Conference publication

Abstract

The provision of security services is a key enabler in cloud computing architectures. Focusing on multitenancy authorization systems, the provision of different models including role based access control (RBAC), hierarchical RBAC (hRBAC), conditional RBAC (cRBAC) and hierarchical objects (HO) is the main objective of this paper. Our proposal is based on the Common Information Model (CIM) and Semantic Web technologies, which have been demonstrated as valid tools for describing authorization models. As the same language is being used for the information and the authorization models they are both well aligned and thus reducing the potential mismatch that may appear between the semantics of both models. A trust model enabling the establishment of coalitions and federations across tenants is also an objective being covered as part of the research being presented in this paper.

Original language	English
Title of host publication	Proceedings of the International Conference on Security and Cryptography
Place of Publication	United States
Publisher	IEEE
Pages	333-338
Number of pages	6
Publication status	Published - 18 Jul 2011

Keywords

Authorization system
Cloud computing
Multi-tenancy
Trust model
Semantic web

Cite this

@inproceedings{164155631123492ba92a2ab7b5884278,

title = "Towards an authorization system for cloud infrastructure providers",

abstract = "The provision of security services is a key enabler in cloud computing architectures. Focusing on multitenancy authorization systems, the provision of different models including role based access control (RBAC), hierarchical RBAC (hRBAC), conditional RBAC (cRBAC) and hierarchical objects (HO) is the main objective of this paper. Our proposal is based on the Common Information Model (CIM) and Semantic Web technologies, which have been demonstrated as valid tools for describing authorization models. As the same language is being used for the information and the authorization models they are both well aligned and thus reducing the potential mismatch that may appear between the semantics of both models. A trust model enabling the establishment of coalitions and federations across tenants is also an objective being covered as part of the research being presented in this paper.",

keywords = "Authorization system, Cloud computing, Multi-tenancy, Trust model, Semantic web",

author = "Bernabe, \{Jorge Bernal\} and \{Mar{\'i}n P{\'e}rez\}, \{Juan M.\} and \{Alcaraz Calero\}, \{Jose M.\} and \{Garc{\'i}a Clemente\}, \{F{\'e}lix J.\} and \{Mart{\'i}nez P{\'e}rez\}, Gregorio and \{Gomez Skarmeta\}, \{Antonio F.\}",

year = "2011",

month = jul,

day = "18",

language = "English",

pages = "333--338",

booktitle = "Proceedings of the International Conference on Security and Cryptography",

publisher = "IEEE",

address = "United States",

}

TY - GEN

T1 - Towards an authorization system for cloud infrastructure providers

AU - Bernabe, Jorge Bernal

AU - Marín Pérez, Juan M.

AU - Alcaraz Calero, Jose M.

AU - García Clemente, Félix J.

AU - Martínez Pérez, Gregorio

AU - Gomez Skarmeta, Antonio F.

PY - 2011/7/18

Y1 - 2011/7/18

N2 - The provision of security services is a key enabler in cloud computing architectures. Focusing on multitenancy authorization systems, the provision of different models including role based access control (RBAC), hierarchical RBAC (hRBAC), conditional RBAC (cRBAC) and hierarchical objects (HO) is the main objective of this paper. Our proposal is based on the Common Information Model (CIM) and Semantic Web technologies, which have been demonstrated as valid tools for describing authorization models. As the same language is being used for the information and the authorization models they are both well aligned and thus reducing the potential mismatch that may appear between the semantics of both models. A trust model enabling the establishment of coalitions and federations across tenants is also an objective being covered as part of the research being presented in this paper.

AB - The provision of security services is a key enabler in cloud computing architectures. Focusing on multitenancy authorization systems, the provision of different models including role based access control (RBAC), hierarchical RBAC (hRBAC), conditional RBAC (cRBAC) and hierarchical objects (HO) is the main objective of this paper. Our proposal is based on the Common Information Model (CIM) and Semantic Web technologies, which have been demonstrated as valid tools for describing authorization models. As the same language is being used for the information and the authorization models they are both well aligned and thus reducing the potential mismatch that may appear between the semantics of both models. A trust model enabling the establishment of coalitions and federations across tenants is also an objective being covered as part of the research being presented in this paper.

KW - Authorization system

KW - Cloud computing

KW - Multi-tenancy

KW - Trust model

KW - Semantic web

UR - https://ieeexplore.ieee.org/abstract/document/6732407

M3 - Conference publication

SP - 333

EP - 338

BT - Proceedings of the International Conference on Security and Cryptography

PB - IEEE

CY - United States

ER -

Towards an authorization system for cloud infrastructure providers

Abstract

Keywords

Other files and links

Fingerprint

Cite this