Title :
Permission Management System: Permission as a Service in Cloud Computing
Author :
Echeverría, Victor ; Liebrock, Lorie M. ; Shin, Dongwan
Author_Institution :
Comput. Sci. & Eng. Dept., New Mexico Tech, Socorro, NM, USA
Abstract :
One of the challenging problems cloud computing is facing today is the security of data in the cloud. Since the physical location of user data in the cloud is unknown and the data are often distributed across multiple cloud services, a user controllable and privacy preserving access control mechanism is necessary for the success of cloud computing in general and for the protection of user data in specific. In this paper, we discuss a novel approach to controlling access to user data in the cloud; the concept is called Permission as a Service (PaaS). Specifically, PaaS separates access control from other services to provide a separate service in the cloud. This allows users to set permissions for all data in a single location. In PaaS, user data are encrypted to maintain confidentiality and permissions are managed via decryption keys. As a proof-of-concept, we discuss the design and implementation of our prototype leveraging attribute based encryption (ABE).
Keywords :
Web services; authorisation; cryptography; data privacy; attribute based encryption; cloud computing; decryption key; permission management system; privacy preserving access control mechanism; user data encryption; Access control; Cloud computing; Clouds; Databases; Encryption; Public key; ABE; Access control; Cloud computing; PaaS;
Conference_Titel :
Computer Software and Applications Conference Workshops (COMPSACW), 2010 IEEE 34th Annual
Conference_Location :
Seoul
Print_ISBN :
978-1-4244-8089-0
Electronic_ISBN :
978-0-7695-4105-1
DOI :
10.1109/COMPSACW.2010.71
