Abstract
With the increase of information resources, resources are uploaded to different cloud services in different domains. In order to facilitate cross-domain access, it is necessary to grant access authority to the subject before cross-domain access. Therefore, it has gradually become a necessary trend to apply pre-authorization access control mechanism in cross-domain. However, in this cloud service mode, pre-authorization for cross-domain access still has some problems, such as illegal access to resources, high cost of attribute mapping, easy disclosure of privacy, etc. The above problems bring a series of new requirements for cross-domain access control in cloud, such as fine-grained pre-authorization access control, privacy protection and reducing mapping cost. In order to meet these requirements, a pre-authorization usage control mechanism for attribute update in access execution (UCONpreA2) is proposed in this paper, and formally described. And then, the global attribute is divided into static attribute and dynamic attribute, and using local attributes for mapping. Our case analysis shows that the access control mechanism can meet the above series of requirements.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Similar content being viewed by others
References
Jiang, Z.T., L. Xie, Q. Wang, and W.H. Zhang. 2017. A cross-domain access control model for cloud computing environment. Microelectronics and Computers 34 (3): 65–69 (in Chinese).
Park, J., and R. Sandhu. 2004. The UCONABC usage control model. ACM Transactions on Information & System Security 7 (1): 128–174.
Zhang, X., R. Sandhu, and F. Parisi-Presicce. 2006. Safety analysis of usage control authorization models. In ACM symposium on information. ACM.
Peng, H.X. 2006. An id entity-based authentication model for multi-domain. Chinese Journal of Computers 29 (8): 1271–1281 (in Chinese).
Hou, H.F., X.S. Ji, and G.Q. Liu. 2011. Identity-Based anonymity authentication protocol in the heterogeneous wireless network. Journal on Communications 32 (5): 153–161 (in Chinese).
Hou, H.F., X.S. Ji, G.Q. Liu, and Q.W. Zhang. 2009. Provable security authentication scheme based on public key for heterogeneous wireless network. Journal of Electronics & Information Technology 30 (10): 2385–2391 (in Chinese).
Jiang, Q., J.F. Ma, G.S. Li, and H.Y. Liu. 2010. Identity-based roaming protocol with anonymity for heterogeneous wireless networks. Journal on Communications 31 (10): 138–145 (in Chinese).
Wu, Z.Q., Y.W. Zhou, and Z.R. Qiao. 2010. Access mechanism of trusted mobile platform under mobile network. Journal on Communications 31 (10): 158–169 (in Chinese).
Wang, L.M., S.R. Jiang, and Y.B. Guo. 2012. Composable-secure authentication protocol for mobile sensors roaming in the Internet of things. Scientia Sinica (Informationis) 42 (7): 815–830. https://doi.org/10.1360/112011-1081 (in Chinese).
Yoon, E.J., K.Y. Yoo, and K.S. Ha. 2011. A user friendly authentication scheme with anonymity for wireless communications. Computers & Electrical Engineering 37 (3): 356–364.
Acknowledgements
This research was supported by the National Key Research and Development Program of China (Grant No. 2017YFB0801803).
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2020 Springer Nature Singapore Pte Ltd.
About this paper
Cite this paper
Xie, R., Wang, Y., Shi, G., Yuan, L., Li, Q. (2020). Pre-authorization Usage Control Mechanism for Cross-Domain in Cloud. In: Huang, C., Chan, YW., Yen, N. (eds) Data Processing Techniques and Applications for Cyber-Physical Systems (DPTA 2019). Advances in Intelligent Systems and Computing, vol 1088. Springer, Singapore. https://doi.org/10.1007/978-981-15-1468-5_103
Download citation
DOI: https://doi.org/10.1007/978-981-15-1468-5_103
Published:
Publisher Name: Springer, Singapore
Print ISBN: 978-981-15-1467-8
Online ISBN: 978-981-15-1468-5
eBook Packages: Intelligent Technologies and RoboticsIntelligent Technologies and Robotics (R0)