Title :
An access control architecture based on IF-MAP for cloud environments
Author :
Yaping Chi ; Haijing Liu ; Guoming An
Author_Institution :
Dept. of Commun. Eng., Beijing Electron. & Sci. Technol. Inst., Beijing, China
Abstract :
Cloud system peculiarities, such as dynamic virtualization management and multi-tenant shared mode, make authentication and access control more important than ever. This paper presents an advanced Access control model based on the TCG´IF-MAP standard and the OASIS XACML standard to regulate the access of Cloud resources. The main novelty of the architecture is the introduction of MAP server, providing detailed, real-time information about the user and resources based on IF-MAP protocol aims to establish trust system domain and provides a resilient reevaluation authorization. In addition, it is quite possible that a single service may be affected by multiple policy decision authorities in cloud, for this we design the PMC module serves as a controller for interaction between the PDP and PEP.
Keywords :
authorisation; cloud computing; IF-MAP protocol; MAP server; OASIS XACML standard; PDP; PEP; PMC module; access control architecture; access control model; authentication; cloud environments; cloud resources; cloud system peculiarities; dynamic virtualization management; multiple policy decision authorities; multitenant shared mode; resilient reevaluation authorization; trust system domain; Access Control; Cloud Computing; IF-MAP; Trusted Multi-Tenant; XACML;
Conference_Titel :
Wireless Communications, Networking and Mobile Computing (WiCOM 2014), 10th International Conference on
Print_ISBN :
978-1-84919-845-5
DOI :
10.1049/ic.2014.0178
