Title :
PPL v2.0: Uniform Data Access and Usage Control on Cloud and Mobile
Author :
Di Cerbo, Francesco ; Some, Doliere Francis ; Gomez, Laurent ; Trabelsi, Slim
Author_Institution :
SAP product Security Res., Mougins, France
Abstract :
Cloud storage is one of the most popular categories of market services. It provides an easy means for consumers to store and share their data, also in mobility through convenient apps. However, such valuable functionality raises several security concerns. Among them, the risk of sensitive information disclosure or, for professional data, the risk of compliance violations. In this paper, we propose an access and usage control framework for seamless, uniform and secure data sharing across cloud and mobile which keeps data under the control of its owner, that expresses preferences according to privacy or security needs. To our knowledge, this is the first effort addressing simultaneously and consistently cloud and mobile platforms. Our proposal offers access and usage control of managed resources relying on the security policy languages XACML and PPL (extended to make use of cloud and mobile contextual information) and on specific engines (cloud, mobile) to enforce them. A use case is presented, to illustrate the framework in action.
Keywords :
authorisation; cloud computing; data privacy; mobile computing; PPL v2.0; XACML; access control; cloud storage; privacy needs; secure data sharing; security needs; security policy languages; uniform data access; usage control; Access control; Computer architecture; Data privacy; Engines; IEEE 802.11 Standard; Mobile communication; Cloud; Compliance; Mobile; Privacy; Security; Usage Control;
Conference_Titel :
TEchnical and LEgal aspects of data pRivacy and SEcurity, 2015 IEEE/ACM 1st International Workshop on
Conference_Location :
Florence
Print_ISBN :
978-1-4673-7097-4
DOI :
10.1109/TELERISE.2015.9
