Access Control Model Based on Trust and Risk Evaluation in IDMaaS

Author

Fei Liu ; Jing Wang ; Hongtao Bai ; Huiping Sun

Author_Institution

China Mobile Res. Inst., Beijing, China

fYear

2015

fDate

13-15 April 2015

Firstpage

179

Lastpage

184

Abstract

As cloud computing technology develops rapidly, more convenience has been brought to users by various cloud providers with various cloud services. However, difficulty of management, especially when different access control protocols and personal information involved, has become one of barriers that inhibit the development process of cloud technology. In this paper, a user-centered ID MaaS (Identity Management as a Service) is proposed combined with a novel access control model based on trust and risk evaluation. Besides, a format-preserving encryption (FPE) method is proposed as an auxiliary scheme guaranteeing the effectiveness of access control. ID MaaS offers a solution that effectively alleviates the difficulty of realizing unified management of users´ identity and information among diverse cloud service providers.

Keywords

authorisation; cloud computing; risk analysis; trusted computing; FPE method; IDMaaS; access control protocols; cloud computing technology; cloud service providers; cloud technology; format preserving encryption; identity management as a service; personal information; risk evaluation; trust evaluation; unified management; Access control; Cloud computing; Computational modeling; Data models; Encryption; Servers; IDMaaS; access control; format-preserving encryption; risk evluation; trust evaluation;

fLanguage

English

Publisher

ieee

Conference_Titel

Information Technology - New Generations (ITNG), 2015 12th International Conference on

Conference_Location

Las Vegas, NV

Print_ISBN

978-1-4799-8827-3

Type

conf

DOI

10.1109/ITNG.2015.34

Filename

7113469