Pre-authorization Usage Control Mechanism for Cross-Domain in Cloud

Xie, Rongna; Wang, Yazhe; Shi, Guozhen; Yuan, Lin; Li, Quanqi

doi:10.1007/978-981-15-1468-5_103

Rongna Xie¹⁷,
Yazhe Wang¹⁷,
Guozhen Shi¹⁷,
Lin Yuan¹⁷ &
…
Quanqi Li¹⁷

Part of the book series: Advances in Intelligent Systems and Computing ((AISC,volume 1088))

77 Accesses

Abstract

With the increase of information resources, resources are uploaded to different cloud services in different domains. In order to facilitate cross-domain access, it is necessary to grant access authority to the subject before cross-domain access. Therefore, it has gradually become a necessary trend to apply pre-authorization access control mechanism in cross-domain. However, in this cloud service mode, pre-authorization for cross-domain access still has some problems, such as illegal access to resources, high cost of attribute mapping, easy disclosure of privacy, etc. The above problems bring a series of new requirements for cross-domain access control in cloud, such as fine-grained pre-authorization access control, privacy protection and reducing mapping cost. In order to meet these requirements, a pre-authorization usage control mechanism for attribute update in access execution (UCON_preA2) is proposed in this paper, and formally described. And then, the global attribute is divided into static attribute and dynamic attribute, and using local attributes for mapping. Our case analysis shows that the access control mechanism can meet the above series of requirements.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 259.00; Price excludes VAT (USA)

Softcover Book: USD 329.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

Jiang, Z.T., L. Xie, Q. Wang, and W.H. Zhang. 2017. A cross-domain access control model for cloud computing environment. Microelectronics and Computers 34 (3): 65–69 (in Chinese).
Google Scholar
Park, J., and R. Sandhu. 2004. The UCON_ABC usage control model. ACM Transactions on Information & System Security 7 (1): 128–174.
Article Google Scholar
Zhang, X., R. Sandhu, and F. Parisi-Presicce. 2006. Safety analysis of usage control authorization models. In ACM symposium on information. ACM.
Google Scholar
Peng, H.X. 2006. An id entity-based authentication model for multi-domain. Chinese Journal of Computers 29 (8): 1271–1281 (in Chinese).
Google Scholar
Hou, H.F., X.S. Ji, and G.Q. Liu. 2011. Identity-Based anonymity authentication protocol in the heterogeneous wireless network. Journal on Communications 32 (5): 153–161 (in Chinese).
Google Scholar
Hou, H.F., X.S. Ji, G.Q. Liu, and Q.W. Zhang. 2009. Provable security authentication scheme based on public key for heterogeneous wireless network. Journal of Electronics & Information Technology 30 (10): 2385–2391 (in Chinese).
Google Scholar
Jiang, Q., J.F. Ma, G.S. Li, and H.Y. Liu. 2010. Identity-based roaming protocol with anonymity for heterogeneous wireless networks. Journal on Communications 31 (10): 138–145 (in Chinese).
Google Scholar
Wu, Z.Q., Y.W. Zhou, and Z.R. Qiao. 2010. Access mechanism of trusted mobile platform under mobile network. Journal on Communications 31 (10): 158–169 (in Chinese).
Google Scholar
Wang, L.M., S.R. Jiang, and Y.B. Guo. 2012. Composable-secure authentication protocol for mobile sensors roaming in the Internet of things. Scientia Sinica (Informationis) 42 (7): 815–830. https://doi.org/10.1360/112011-1081 (in Chinese).
Article Google Scholar
Yoon, E.J., K.Y. Yoo, and K.S. Ha. 2011. A user friendly authentication scheme with anonymity for wireless communications. Computers & Electrical Engineering 37 (3): 356–364.
Article Google Scholar

Download references

Acknowledgements

This research was supported by the National Key Research and Development Program of China (Grant No. 2017YFB0801803).

Author information

Authors and Affiliations

Beijing Electronic Science and Technology Institute, Fengtai District, Beijing, China
Rongna Xie, Yazhe Wang, Guozhen Shi, Lin Yuan & Quanqi Li

Authors

Rongna Xie
View author publications
You can also search for this author in PubMed Google Scholar
Yazhe Wang
View author publications
You can also search for this author in PubMed Google Scholar
Guozhen Shi
View author publications
You can also search for this author in PubMed Google Scholar
Lin Yuan
View author publications
You can also search for this author in PubMed Google Scholar
Quanqi Li
View author publications
You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Yazhe Wang .

Editor information

Editors and Affiliations

Huazhong University of Science and Technology, Wuhan, China
Chuanchao Huang
Computer Science and Information Management, Providence University, Taichung, Taiwan
Yu-Wei Chan
University of Aizu, Fukushima, Japan
Neil Yen

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Xie, R., Wang, Y., Shi, G., Yuan, L., Li, Q. (2020). Pre-authorization Usage Control Mechanism for Cross-Domain in Cloud. In: Huang, C., Chan, YW., Yen, N. (eds) Data Processing Techniques and Applications for Cyber-Physical Systems (DPTA 2019). Advances in Intelligent Systems and Computing, vol 1088. Springer, Singapore. https://doi.org/10.1007/978-981-15-1468-5_103

Download citation

DOI: https://doi.org/10.1007/978-981-15-1468-5_103
Published: 04 February 2020
Publisher Name: Springer, Singapore
Print ISBN: 978-981-15-1467-8
Online ISBN: 978-981-15-1468-5
eBook Packages: Intelligent Technologies and RoboticsIntelligent Technologies and Robotics (R0)

Publish with us

Policies and ethics