A Model for Trust-Based Access Control and Delegation in Mobile Clouds - Data and Applications Security and Privacy XXVII
Conference Papers Year : 2013

A Model for Trust-Based Access Control and Delegation in Mobile Clouds

Abstract

Multi-tenancy, elasticity and dynamicity pose several novel challenges for access control in mobile smartphone clouds such as the Android$\textsuperscript\texttrademark$ cloud. Accessing subjects may dynamically change, resources requiring protection may be created or modified, and a subject’s access requirements to resources may change during the course of the application execution. Cloud tenants may need to acquire permissions from different administrative domains based on the services they require. Moreover, all the entities participating in a cloud may not be trusted to the same degree. Traditional access control models are not adequate for mobile clouds. In this work, we propose a new access control framework for mobile smartphone clouds. We formalize a trust-based access control model with delegation for providing fine-grained access control. Our model incorporates the notion of trust in the Role-Based Access Control (RBAC) model and also formalizes the concept of trustworthy delegation.
Fichier principal
Vignette du fichier
978-3-642-39256-6_16_Chapter.pdf (427.12 Ko) Télécharger le fichier
Origin Files produced by the author(s)

Dates and versions

hal-01490708 , version 1 (15-03-2017)

Licence

Identifiers

Cite

Indrajit Ray, Dieudonne Mulamba, Indrakshi Ray, Keesook J. Han. A Model for Trust-Based Access Control and Delegation in Mobile Clouds. 27th Data and Applications Security and Privacy (DBSec), Jul 2013, Newark, NJ, United States. pp.242-257, ⟨10.1007/978-3-642-39256-6_16⟩. ⟨hal-01490708⟩
270 View
363 Download

Altmetric

Share

More