Design Role-Based Multi-tenancy Access Control Scheme for Cloud Services

2013 ◽  
Author(s):  
Shin-Jer Yang ◽  
Pei-Ci Lai ◽  
Jyhjong Lin
Keyword(s):  
Access Control ◽  
Cloud Services ◽  
Control Scheme ◽  
Role Based

scholarly journals Hybrid Role and Attribute Based Access Control Applied in Information Systems

2021 ◽  
Vol 21 (3) ◽  
pp. 85-96
Author(s):  
Maria Penelova
Keyword(s):  
Information Systems ◽  
Access Control ◽  
Accounting Information ◽  
Role Based Access Control ◽  
Accounting Information System ◽  
Fine Grained ◽  
Proposed Model ◽  
Control Scheme ◽  
Attribute Based Access Control ◽  
Role Based

Abstract It this paper it is proposed a new access control model – Hybrid Role and Attribute Based Access Control (HRABAC). It is an extension of Role-Based Access Control (RBAC). HRABAC is designed for information systems and enterprise software and combines the advantages of RBAC and Attribute-Based Access Control (ABAC). HRABAC is easy configurable, fine-grained and supports role hierarchies. The proposed model HRABAC describes the access control scheme in Laravel package laravelroles/rolespermissions, which is developed by the author of the paper, as an answer to the requirements of practice of fine-grained and easy configurable access control solution. Laravel is chosen, because it is the most popular and the most widely used PHP framework. The package laravelroles/rolespermissions is developed on Laravel so that maximum number of programmers could use it. This package contains working and tested functionalities for managing users, roles and permissions, and it is applied in accounting information system.

scholarly journals Access control scheme in cloud services based on different user roles

2018 ◽  
Vol 51 (3-4) ◽  
pp. 182-188
Author(s):  
Shanmugasundaram Singaravelan ◽  
Ramaiah Arun ◽  
Dhiraviyam Arun Shunmugam ◽  
Raja Veeman Vivek ◽  
Dhanushkodi Murugan
Keyword(s):  
Access Control ◽  
Rapid Development ◽  
Single Point ◽  
Cloud Services ◽  
Security Issues ◽  
Attribute Based Encryption ◽  
Control Scheme ◽  
Result Show ◽  
Access Control System ◽  
Private Domain

The rapid development of computer technology, cloud-based services have become a hot topic. They not only provide users with convenience, but also bring many security issues, such as data sharing and privacy issue. In this paper, we present an access control system with privilege separation based on privacy protection (PS-ACS). In the PS-ACS scheme, we divide users into private domain (PRD) and public domain (PUD) logically. In PRD, to achieve read access permission and write access permission, we adopt the Key-Aggregate Encryption (KAE) and the Improved Attribute-based Signature (IABS) respectively. In PUD, we construct new multi-authority cipher text policy attribute-based encryption (CP-ABE) scheme with efficient decryption to avoid the issues of single point of failure and complicated key distribution, and design an efficient attribute revocation method for it. The analysis and simulation result show that our scheme is feasible and superior to protect users’ privacy in cloud-based services

scholarly journals Components- Based Access Control Architecture

10.28945/3374 ◽  
2009 ◽  
Author(s):  
Adesina Sodiya ◽  
Adebukola Onashoga
Keyword(s):  
Access Control ◽  
Control Mechanism ◽  
Control Architecture ◽  
Role Based Access Control ◽  
Appropriate Use ◽  
Control Techniques ◽  
Use Of Resources ◽  
Control Scheme ◽  
Access Control Mechanism ◽  
Role Based

Ensuring adequate security of information has been a growing concern of individuals and organizations. There is then the need to provide suitable access control mechanism for preventing insider abuses and ensuring appropriate use of resources. This paper presents an access control scheme that adopts the techniques of Role-Based Access Control (RBAC), Purpose-Based Access Control (PBAC), Time-Based Access Control (TBAC) and History-Based Access Control (HBAC) as components to form an integrated Components-based Access Control Architecture (CACA). In CACA, an Access Control Score (ACS) is computed from the combined access control techniques. CACA also combines ACS with the sensitivity nature of system resources before a level of access is granted. The architecture was implemented within a payroll system developed using JAVA and SQL. Using usability testing, the evaluation of CACA showed 92% reduction in insider abuses and misuse of privileges. This shows that CACA can provide higher level of security access as against what used to exist.

Group based access control scheme

2009 ◽  
Author(s):  
Asmidar Abu Bakar ◽  
Roslan Ismail ◽  
Abdul Rahim Ahmad ◽  
Jamalul-lail Abdul Manan ◽  
Jamilin Jais
Keyword(s):  
Access Control ◽  
Control Scheme
Sign in / Sign up

Export Citation Format

Share Document