期刊名称:International Journal of Soft Computing & Engineering
电子版ISSN:2231-2307
出版年度:2013
卷号:3
期号:2
页码:51-55
出版社:International Journal of Soft Computing & Engineering
摘要:Security of information systems is a problem chronic, the arrival of cloud computing as a new computing model, feeds the difficulty of implementing effective solutions. Thus more research is currently focused on data security in the cloud, and especially the issue of confidentiality. In this paper we propose a new protocol access control for complex, heterogeneous, interoperable, and distributed systems in the context of Cloud Computing : « Multi-TrustOrBAC » (Multi- Organization - Trust Based Access Control). This protocol allows a TTP «Trust Tierd Party [10] » to force users belonging to several organizations to cooperate to meet the security policies defined independently by them. The aim is to offer to organizations working together and having decided to migrate to the cloud, a means of real-time monitoring of their safety. Our solution is based on both the concept of trust assigned to users and to the definition of an order on the set of security policies. The logical formalism is used to specify and describe the rules of the security policies of different organizations.
关键词:Policy;security;interoperable;system;heterogeneous and distributed systems; actions weighted; access;control.
