Semantics based access management framework for securing data in cloud

Abstract

Data security is one of the critical issues in evaluating cloud based services. The reason is that even a naive user can store his/her data in any cloud storage provided by diverse cloud service providers. Each cloud service provider has his/her own access control policies written in diverse policy languages and schemes. Most of the traditional access control policies like MAC, DAC, and RBAC lack consideration about the relationship between access control entities. In this paper, we propose a semantic based access management framework which considers the semantic relationship between the access control entities like subject, object and action. This framework works for diverse cloud service providers and users and provides fine granular access control over the data stored in cloud.