期刊名称:International Journal of Soft Computing & Engineering
电子版ISSN:2231-2307
出版年度:2012
卷号:2
期号:4
页码:122-130
出版社:International Journal of Soft Computing & Engineering
摘要:The access control models like DAC, MAC, RBAC, TBAC, TMAC, DomBAC, etc. mainly model security policies for information systems having a centralized governance. Moreover, they only specify permissions and prohibitions, sometimes obligations. Besides that, they generally do not allow the establishment of activated, dynamic and adapted rules. However, such rules are highly useful in a cloud environment where IT governance is shared, used or managed by different entities. In this paper, we propose a new model for specifying such security policies. This model called Trust Organization Based Access Control (TOrBAC) which relies on the use of a recursive formula for calculating a confidence index. We also formalize our work using a language based on first order logic and we apply it to a cloud computing (CC) related use case.
关键词:Cloud computing; Access model control; security.
