Ontology Centric Access Control Mechanism for Enabling Data Protection in Cloud

Auxilia, M.; Raja, K.

doi:10.17485/ijst/2016/v9i23/95148

Cited by 9 publications

(5 citation statements)

References 0 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…To overcome this issue, Auxilia and Raja proposed a Semantic-Based Access Control model (Auxilia and Raja, 2016;. The SBAC model includes three modules: The Ontology Base, which is a collection of ontologies (Subject Ontology, Object Ontology, and Action Ontology), designed with an OWL ontology language, Authorization Base which is a collection of authorization rules made with SWRL language and operations that are executed on Authorization Base to grant or revoke access to objects.…”

Section: Related Workmentioning

confidence: 99%

A Federative Access Control in a Cloud Environment with a Publish/Subscribe Protocol

Saidi¹,

Aissaoui²,

Mektoubi³

2022

Journal of Computer Science

View full text Add to dashboard Cite

Cloud computing is a new concept that has interesting advantages; high computing performances provided as needed, much lower cost than inhouse infrastructures, and better reliability and scalability. However, with some drawbacks that are impeding its adoption, security is so far the most alarming concern for companies or organizations. Access control policies, for example, are the most challenging issue that has been tackled these last years; to ensure that the right user is accessing the right resources in such a distributed, virtual and scalable environment handled by a third party, to manage an access request to a shared resource from heterogeneous entities following different policies. In this study, the authors aim to overcome this issue by implementing an access control architecture enabling access to the shared data for collaborating organizations. They propose a model supplied with an ontology database describing the whole environment to control access to a publish/subscribe messaging protocol; which capitalizes on the advantages provided by innovative techniques such as Semantic Web technologies and the publish/subscribe protocol. Semantic Web technologies provide dynamism and scalability for this model thanks to its SWRL inference engine while the publish/subscribe protocol, in this case, MQTT, which is a light-coupling protocol simplifies the traffic between the different actors involved.

show abstract

Section: Related Workmentioning

confidence: 99%

A Federative Access Control in a Cloud Environment with a Publish/Subscribe Protocol

Saidi¹,

Aissaoui²,

Mektoubi³

2022

Journal of Computer Science

View full text Add to dashboard Cite

show abstract

“…Generality: Starting with the creation of ontologies, we have chosen the domain of knowledge as banking [29]. Subject ontology is created in terms of credentials which are universally accepted for user authentication.…”

Section: Experimental Analysismentioning

confidence: 99%

Providing Ontology-Based Access Control for Cloud Data by Exploiting Subsumption Property among Domains of Access Control

Michael¹,

Kothandaraman²,

Kaliyan³

2019

IJIES

View full text Add to dashboard Cite

Cloud computing has pulled in numerous business organizations and users because of its simplified administration effort, minimal maintenance cost and pervasive access to out-sourced resources, which can be hardware or software. Users share these resources in large-scale environments over the Internet. Stringent access control must be implemented in a cloud storage system for protecting sensitive information. Access control models in the current literature such as Discretionary Access control (DAC), Mandatory Access Control model (MAC), Role-Based Access Model (RBAC) or Attribute Access Control Model (ABAC) consider the entities of access control in isolation and thus leading to incorrect access control decisions. In this paper, Ontology-Based Access Control is proposed. This proposal uses an ontology to model the entities associated with access control and their interrelationships among them, which could be effortlessly adjusted to Cloud environments. Ontology promises to streamline knowledge sharing among the entities. Subsumption property is exploited over concepts, properties and individuals. The experimental results show that the number of rules to be stored in Policy Base is reduced and reasoning time is also considerably reduced because of applying subsumption property and hence access decision is made faster. Also, our work is compared with the existing works against the state of art models with the help of access control metrics provided by the National Institute of Standards and Technology (NIST). Our work answers the queries related to metric effectively than the existing works. Hence the performance of the system is increased and suitable for securing cloud data.

show abstract

“…By using knowledge base and language tools to replace the pre-defined sensitive words set, they propose an automatically method to assess the degree of sensitiveness. Auxilia et al [57] put forward an ontology centric access control (OCAC) framework, which defines user, resource and action ontology, and calculate the similarity of access request on behalf of these ontology. This framework can avoid policy collision effectively and enable users to manage their policies.…”

Section: Researches On Multi-clouds Access Controlmentioning

confidence: 99%

Research on Access Control in Cloud Storage System: From Single to Multi-Clouds

Fan¹

2018

AJSEA

View full text Add to dashboard Cite

Implementation of access control in cloud storage system is the essential method to protect users' data from revealing sensitive information. The paper mainly investigates key technologies of access control in cloud storage system, including intra cloud and among multi-clouds. Firstly, we discuss about the focuses in recent researches and challenges of access control in cloud storage system. The access control researches here refer to cipher-text and cross-domain access control in cloud storage system. The key technologies introduce Ciphertext-Policy Attribute-Based Encryption algorithm(CP-ABE), ontology based attributes mapping, algebra based policies integration, solutions for identification, access authorization and identity federation. And the status of these fields is described next. At last, we concluded this paper and proposed some directions in the future work of access control research in cloud storage system. This paper can help to understand the key technologies of access control in cloud storage and helpful in the future researches.

show abstract

Ontology Centric Access Control Mechanism for Enabling Data Protection in Cloud

Cited by 9 publications

References 0 publications

A Federative Access Control in a Cloud Environment with a Publish/Subscribe Protocol

A Federative Access Control in a Cloud Environment with a Publish/Subscribe Protocol

Providing Ontology-Based Access Control for Cloud Data by Exploiting Subsumption Property among Domains of Access Control

Research on Access Control in Cloud Storage System: From Single to Multi-Clouds

Contact Info

Product

Resources

About