A Cross Tenant Access Control (CTAC) Model for Cloud Computing: Formal Specification and Verification

Quratulain Alam; Saif U. R. Malik; Adnan Akhunzada; Kim-Kwang Raymond Choo; Saher Tabbasum; Masoom Alam

首页> 外文期刊>Information Forensics and Security, IEEE Transactions on >A Cross Tenant Access Control (CTAC) Model for Cloud Computing: Formal Specification and Verification

【24h】

A Cross Tenant Access Control (CTAC) Model for Cloud Computing: Formal Specification and Verification

机译：云计算的跨租户访问控制（CTAC）模型：正式规范和验证

获取原文

获取原文并翻译 | 示例

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

Sharing of resources on the cloud can be achieved on a large scale, since it is cost effective and location independent. Despite the hype surrounding cloud computing, organizations are still reluctant to deploy their businesses in the cloud computing environment due to concerns in secure resource sharing. In this paper, we propose a cloud resource mediation service offered by cloud service providers, which plays the role of trusted third party among its different tenants. This paper formally specifies the resource sharing mechanism between two different tenants in the presence of our proposed cloud resource mediation service. The correctness of permission activation and delegation mechanism among different tenants using four distinct algorithms (activation, delegation, forward revocation, and backward revocation) is also demonstrated using formal verification. The performance analysis suggests that the sharing of resources can be performed securely and efficiently across different tenants of the cloud.

机译：由于它具有成本效益和位置独立性，因此可以大规模实现云上资源的共享。尽管围绕云计算进行了大肆宣传，但由于对安全资源共享的担忧，组织仍不愿在云计算环境中部署其业务。在本文中，我们提出了一种由云服务提供商提供的云资源中介服务，该服务在其不同租户之间扮演着受信任的第三方的角色。本文正式提出了我们提议的云资源中介服务存在下两个不同租户之间的资源共享机制。还使用形式验证来证明使用四种不同算法（激活，委托，正向撤销和向后撤销）的不同租户之间的权限激活和委托机制的正确性。性能分析表明，可以在云的不同租户之间安全有效地执行资源共享。

著录项

来源
《Information Forensics and Security, IEEE Transactions on》 |2017年第6期|1259-1268|共10页
作者
Quratulain Alam; Saif U. R. Malik; Adnan Akhunzada; Kim-Kwang Raymond Choo; Saher Tabbasum; Masoom Alam;
展开▼
作者单位

Department of Computer Sciences, Institute of Management Sciences, Peshawar, Pakistan;

Department of Computer Sciences, COMSATS Institute of Information Technology, Islamabad, Pakistan;

Department of Computer Sciences, COMSATS Institute of Information Technology, Islamabad, Pakistan;

Department of Information Systems and Cyber Security, The University of Texas at San Antonio, San Antonio, TX, USA;

Department of Computer Sciences, COMSATS Institute of Information Technology, Islamabad, Pakistan;

Department of Computer Sciences, COMSATS Institute of Information Technology, Islamabad, Pakistan;

展开▼
收录信息
原文格式 PDF
正文语种 eng
中图分类
关键词
Customer relationship management; Access control; Cloud computing; Authentication; Analytical models; Petri nets;

机译：客户关系管理;访问控制;云计算;认证;分析模型;Petri网;

相似文献

外文文献
中文文献
专利

1. UML specification of access control policies and their formal verification [J] . Manuel Koch, Francesco Parisi-Presicce Software and systems modeling . 2006,第4期

机译：UML访问控制策略规范及其形式验证
2. A Multi-Tenant Usage Access Model for Cloud Computing [J] . Zhengtao Liu, Yun Yang, Wen Gu, Computers, Materials & Continua . 2020,第2期

机译：用于云计算的多租户使用访问模型
3. Formal modeling and verification of security controls for multimedia systems in the cloud [J] . Alam Masoom, Malik Saif-ur-Rehman, Javed Qaisar, Multimedia Tools and Applications . 2017,第21期

机译：云中多媒体系统的安全控制的正式建模和验证
4. A formal specification approach of Privacy-aware Attribute Based Access Control (Pa-ABAC) model for cloud computing [C] . M. Ed-Daibouni, A. Lebbat, S. Tallal, 2016 Third International Conference on Systems of Collaboration . 2016

机译：云计算的基于隐私感知的基于属性的访问控制（Pa-ABAC）模型的正式规范方法
5. Formal modeling and dynamic verification of service level agreements in cloud computing. [D] . Al-Ghuwairi, Abdel-Rahman F. 2013

机译：云计算中服务级别协议的形式化建模和动态验证。
6. SmartVeh: Secure and Efficient Message Access Control and Authentication for Vehicular Cloud Computing [O] . Qinlong Huang, Yixian Yang, Yuxiang Shi 2018

机译：SmartVeh：用于车载云计算的安全高效的消息访问控制和身份验证
7. Access control requirements engineering, modeling and verification in multi-domain grid and cloud computing systems [O] . Antonios Gouglidis -1

机译：多域网格和云计算系统中的访问控制要求工程，建模和验证
8. Formal specification and verification of a fault-masking and transient-recovery model for digital flight-control systems [R] . Rushby, John 1991

机译：数字飞行控制系统的故障屏蔽和瞬态恢复模型的正式规范和验证

A Cross Tenant Access Control (CTAC) Model for Cloud Computing: Formal Specification and Verification

摘要

著录项

相似文献

相关主题

期刊订阅