By emerging cloud computing, organizations utilize\r\nthis new technology by consuming cloud services based ondemand.\r\nHowever, they must put their data and processes on a\r\ncloud, therefore; they do not have enough control on their data\r\nand they must map their access control policies on access control\r\npolicies of a cloud service. Also, some aspects of this technology\r\nlike interoperability, multi-tenancy, continuous access control are\r\nnot supported by traditional approaches. The usage control\r\nmodel with two important specifications like continuous access\r\ncontrol and attribute mutability are more compatible with\r\nsecurity requirements of cloud computing. In this paper, a three\r\nlayer access control based on the usage control for could services\r\nhas been proposed, in which separation of duties can support the\r\nmulti-tenancy and the least privilege principle.
Loading....