{"title":"基于隐私感知属性的云计算访问控制(Pa-ABAC)模型的形式化规范方法","authors":"M. Ed-Daibouni, A. Lebbat, S. Tallal, H. Medromi","doi":"10.1109/SYSCO.2016.7831324","DOIUrl":null,"url":null,"abstract":"The ability to share services and information between departments, partners, customers and other stakeholders of the company's ecosystem is one of the major advantages of cloud computing. The effective deployment of a cloud must be built around the secure and efficient management of user access to resources and data protection against unauthorized disclosure. The Privacy element concerned the protection of the Personal Information Identity (PII) against unauthorized disclosures, which is considered a critical requirement for many enterprises. The traditional access control models that are identity based does not support the privacy requirements and inflexible. In this paper, we propose a new model called Privacy-aware Attribute Based Access Control (Pa-ABAC), the extension of the Attribute Based Access Control (ABAC) model, to express privacy requirements. Our objective is to formally specify the behavior of different elements of the proposed model in a cloud environment. This is very important to develop a valid security policy for a cloud environment free from specification errors and inconsistencies.","PeriodicalId":328833,"journal":{"name":"2016 Third International Conference on Systems of Collaboration (SysCo)","volume":"282 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2016-11-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"8","resultStr":"{\"title\":\"A formal specification approach of Privacy-aware Attribute Based Access Control (Pa-ABAC) model for cloud computing\",\"authors\":\"M. Ed-Daibouni, A. Lebbat, S. Tallal, H. Medromi\",\"doi\":\"10.1109/SYSCO.2016.7831324\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The ability to share services and information between departments, partners, customers and other stakeholders of the company's ecosystem is one of the major advantages of cloud computing. The effective deployment of a cloud must be built around the secure and efficient management of user access to resources and data protection against unauthorized disclosure. The Privacy element concerned the protection of the Personal Information Identity (PII) against unauthorized disclosures, which is considered a critical requirement for many enterprises. The traditional access control models that are identity based does not support the privacy requirements and inflexible. In this paper, we propose a new model called Privacy-aware Attribute Based Access Control (Pa-ABAC), the extension of the Attribute Based Access Control (ABAC) model, to express privacy requirements. Our objective is to formally specify the behavior of different elements of the proposed model in a cloud environment. This is very important to develop a valid security policy for a cloud environment free from specification errors and inconsistencies.\",\"PeriodicalId\":328833,\"journal\":{\"name\":\"2016 Third International Conference on Systems of Collaboration (SysCo)\",\"volume\":\"282 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2016-11-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"8\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2016 Third International Conference on Systems of Collaboration (SysCo)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/SYSCO.2016.7831324\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2016 Third International Conference on Systems of Collaboration (SysCo)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SYSCO.2016.7831324","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
A formal specification approach of Privacy-aware Attribute Based Access Control (Pa-ABAC) model for cloud computing
The ability to share services and information between departments, partners, customers and other stakeholders of the company's ecosystem is one of the major advantages of cloud computing. The effective deployment of a cloud must be built around the secure and efficient management of user access to resources and data protection against unauthorized disclosure. The Privacy element concerned the protection of the Personal Information Identity (PII) against unauthorized disclosures, which is considered a critical requirement for many enterprises. The traditional access control models that are identity based does not support the privacy requirements and inflexible. In this paper, we propose a new model called Privacy-aware Attribute Based Access Control (Pa-ABAC), the extension of the Attribute Based Access Control (ABAC) model, to express privacy requirements. Our objective is to formally specify the behavior of different elements of the proposed model in a cloud environment. This is very important to develop a valid security policy for a cloud environment free from specification errors and inconsistencies.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
