Token-based policy management (TBPM): A reliable data classification and access management schema in clouds

2017 International Carnahan Conference on Security Technology (ICCST) Pub Date : 2017-10-01 DOI:10.1109/CCST.2017.8167836

Faraz Fatemi Moghaddam, P. Wieder, R. Yahyapour

{"title":"Token-based policy management (TBPM): A reliable data classification and access management schema in clouds","authors":"Faraz Fatemi Moghaddam, P. Wieder, R. Yahyapour","doi":"10.1109/CCST.2017.8167836","DOIUrl":null,"url":null,"abstract":"Despite the considerable benefits of cloud computing as an emerging technology, there are some reliability and privacy concerns such as generating and managing access policies according to sensitivity of stored data in cloud storages. The most challenging issue in current information policy models is managing security levels, mapping between access requests and defined policies and considering the flexibility and scalability of this management schema according to the characteristics of cloud computing models. Accordingly, an efficient token-based access model has been presented in this paper to provide a semantic mapping between access requests of cloud users and defined policies and sub-policies of cloud customers according to the authentication and access management protocols of protection ontology. Furthermore, a policy-based session token has been introduced to enhance the reliability of access, decrease the time of mapping by eliminating un-necessary mapping from checked policies and decrease data overhead of by classification of policies and sub-policies.","PeriodicalId":371622,"journal":{"name":"2017 International Carnahan Conference on Security Technology (ICCST)","volume":"42 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2017-10-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2017 International Carnahan Conference on Security Technology (ICCST)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/CCST.2017.8167836","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

Abstract

Despite the considerable benefits of cloud computing as an emerging technology, there are some reliability and privacy concerns such as generating and managing access policies according to sensitivity of stored data in cloud storages. The most challenging issue in current information policy models is managing security levels, mapping between access requests and defined policies and considering the flexibility and scalability of this management schema according to the characteristics of cloud computing models. Accordingly, an efficient token-based access model has been presented in this paper to provide a semantic mapping between access requests of cloud users and defined policies and sub-policies of cloud customers according to the authentication and access management protocols of protection ontology. Furthermore, a policy-based session token has been introduced to enhance the reliability of access, decrease the time of mapping by eliminating un-necessary mapping from checked policies and decrease data overhead of by classification of policies and sub-policies.

查看原文本刊更多论文

基于令牌的策略管理(TBPM):云中的可靠数据分类和访问管理模式

尽管云计算作为一种新兴技术具有相当大的好处，但仍存在一些可靠性和隐私问题，例如根据云存储中存储数据的敏感性生成和管理访问策略。当前信息策略模型中最具挑战性的问题是管理安全级别、访问请求和已定义策略之间的映射，以及根据云计算模型的特征考虑此管理模式的灵活性和可伸缩性。据此，本文提出了一种高效的基于令牌的访问模型，根据保护本体的认证和访问管理协议，在云用户的访问请求与云客户的已定义策略和子策略之间提供语义映射。此外，还引入了基于策略的会话令牌来提高访问的可靠性，通过消除检查策略中不必要的映射来减少映射时间，并通过对策略和子策略进行分类来减少数据开销。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2017 International Carnahan Conference on Security Technology (ICCST)

自引率

0.00%

发文量