Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Context-aware Policy Enforcement for PaaS-enabled Access Control
ICCS Institute of Communications and Computer Systems, Sweden.
ICCS Institute of Communications and Computer Systems, Sweden.
Ubitech Ltd, Greece.
Ubitech Ltd, Greece.
Show others and affiliations
2019 (English)In: IEEE Transactions on Cloud ComputingArticle in journal (Refereed) Epub ahead of print
Abstract [en]

It is generally conceded that, due to security and privacy concerns, enterprises and users are reluctant to embracethe cloud computing paradigm and hence benefit from the cost reductions and the increased flexibility or business agility that thisparadigm brings about. These concerns stem mainly from the significantly-expanded attack surfaces that result from theheterogeneous nature of cloud services and the dynamicity inherent in cloud environments. In order to alleviate these concerns,effective and flexible access control approaches are required to consider the contextual parameters that characterise data accessrequests in the cloud. In this respect, this work presents PaaSword: a novel holistic access control framework—essentially a PaaSoffering—that extends the popular XACML standard with semantic reasoning capabilities that support the federation of effectivecontext-aware access control policies and their infusion into cloud applications with minimal manual intervention and effort. Todetermine the performance of our solution, a comparative evaluation test is presented and discussed, against a well-knownreference implementation of the XACML standard, namely the open source WSO2 Balana engine.

Place, publisher, year, edition, pages
IEEE, 2019.
Keywords [en]
Access Control, Cloud Computing, context-aware policy enforcement
National Category
Computer Systems
Identifiers
URN: urn:nbn:se:ri:diva-39612DOI: 10.1109/TCC.2019.2927341OAI: oai:DiVA.org:ri-39612DiVA, id: diva2:1339221
Projects
PaaSword
Funder
EU, Horizon 2020, 644814Available from: 2019-07-26 Created: 2019-07-26 Last updated: 2019-08-12Bibliographically approved

Open Access in DiVA

No full text in DiVA

Other links

Publisher's full text
By organisation
SICS
Computer Systems

Search outside of DiVA

GoogleGoogle Scholar

doi
urn-nbn

Altmetric score

doi
urn-nbn
Total: 14 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
v. 2.35.7