scholarly journals Security strategies for cloud identity management - a study

2018 ◽  
Vol 7 (2) ◽  
pp. 732 ◽  
Author(s):  
Anilkumar Chunduru ◽  
Sumathy S
Keyword(s):  
Cloud Computing ◽  
Access Control ◽  
Resource Sharing ◽  
Large Scale ◽  
Identity Management ◽  
Critical Infrastructure ◽  
Critical Issue ◽  
Government Organizations ◽  
Control Schemes ◽  
Federated Identity

Emphasis on security for providing Access Control in Cloud computing environment plays a significant role. Cloud computing provides number of benefits such as resource sharing, low speculation and large storage space. Huge amount of information stored in cloud can be accessed from anywhere, anytime on pay-per use basis. Resources in cloud should be accessed only by the authorized clients. Access Control in cloud computing has become a critical issue due to increasing number of users experiencing dynamic changes. Authentication, authorization and approval of the access ensuring liability of entities from login credentials including passwords and biometric scan is essential. Also, the federated authentication management is secured. Current approaches require large-scale distributed access control in cloud environment. Data security and access control are the drawbacks in existing access control schemes. Due to the drawbacks in existing access control schemes such as privacy of information when susceptible information is stored in intermediary service provider a federated identity access management is essential. Access control applications majorly concentrate on Healthcare, Government Organizations, Commercial, Critical Infrastructure and Financial Institutions. This review illustrates a detailed study of access control models in cloud computing and various cloud identity management schemes.

scholarly journals Analysis of Access Control Methods in Cloud Computing

2016 ◽  
Author(s):  
Madhura Mulimani ◽  
Rashmi Rachh
Keyword(s):  
Cloud Computing ◽  
Access Control ◽  
Resource Sharing ◽  
Role Based Access Control ◽  
Storage Space ◽  
Attribute Based Encryption ◽  
Control Schemes ◽  
Investment Cost ◽  
Attribute Based Access Control ◽  
Role Based

Cloud Computing is a promising and emerging technology that is rapidly being adopted by many IT companies due to a number of benefits that it provides, such as large storage space, low investment cost, virtualization, resource sharing, etc. Users are able to store a vast amount of data and information in the cloud and access it from anywhere, anytime on a pay-per-use basis. Since many users are able to share the data and the resources stored in the cloud, there arises a need to provide access to the data to only those users who are authorized to access it. This can be done through access control schemes which allow the authenticated and authorized users to access the data and deny access to unauthorized users. In this paper, a comprehensive review of all the existing access control schemes has been discussed along with analysis. Keywords: role-based access control, attribute-based access control, attribute-based encryption

PpBAC

2018 ◽  
Vol 30 (4) ◽  
pp. 14-31 ◽  
Author(s):  
Suyel Namasudra ◽  
Pinki Roy
Keyword(s):  
Cloud Computing ◽  
Access Control ◽  
Data Storage ◽  
Control Method ◽  
Cloud Environment ◽  
Authorized User ◽  
Control Scheme ◽  
Control Schemes ◽  
Confidential Data ◽  
Efficient Data

This article describes how nowadays, cloud computing is one of the advanced areas of Information Technology (IT) sector. Since there are many hackers and malicious users on the internet, it is very important to secure the confidentiality of data in the cloud environment. In recent years, access control has emerged as a challenging issue of cloud computing. Access control method allows data accessing of an authorized user. Existing access control schemes mainly focus on the confidentiality of the data storage. In this article, a novel access control scheme has been proposed for efficient data accessing. The proposed scheme allows reducing the searching cost and accessing time, while providing the data to the user. It also maintains the security of the user's confidential data.

An Unified Secured Cloud System for the Education Sector of India

2020 ◽  
pp. 69-102
Author(s):  
Kimaya Arun Ambekar ◽  
Kamatchi R.
Keyword(s):  
Cloud Computing ◽  
Network Security ◽  
Access Control ◽  
Identity Management ◽  
Data Encryption ◽  
Cloud Services ◽  
Education Sector ◽  
Cloud Environment ◽  
The World ◽  
Community Cloud

Cloud computing is based on years of research on various computing paradigms. It provides elasticity, which is useful in the situations of uneven ICT resources demands. As the world is moving towards digitalization, the education sector is expected to meet the pace. Acquiring and maintaining the ICT resources also necessitates a huge amount of cost. Education sector as a community can use cloud services on various levels. Though the cloud is very successfully running technology, it also shows some flaws in the area of security, privacy and trust. The research demonstrates a model in which major security areas are covered like authorization, authentication, identity management, access control, privacy, data encryption, and network security. The total idea revolves around the community cloud as university at the center and other associated colleges accessing the resources. This study uses OpenStack environment to create a complete cloud environment. The validation of the model is performed using some cases and some tools.

An Extensible Identity Management Framework for Cloud-Based E-Government Systems

2016 ◽  
pp. 399-422
Author(s):  
Hirra Anwar ◽  
Muhammad Awais Shibli ◽  
Umme Habiba
Keyword(s):  
Cloud Computing ◽  
Identity Management ◽  
Security Requirements ◽  
Computing Technology ◽  
Management Framework ◽  
Government Organizations ◽  
Domain Specific ◽  
Government Institutions ◽  
Design And Implementation

Numerous Cloud Identity Management (IdM) systems have been designed and implemented to meet the diverse functional and security requirements of various organizations. These requirements are subjective in nature; for instance, some government organizations require security more than efficiency while others prioritize performance and immediate response over security. However, most of the existing IdM systems are incapable of handling the user-centricity, security & technology requirements and are also domain specific. In this regard, this chapter elaborates the need to use Cloud Computing technology for enhancing the effectiveness and transparency of IdM functions and presents a comprehensive and well-structured Extensible IdM Framework for Cloud based e-government institutions. We present the design and implementation details of the proposed framework, followed by a case study which shows how government organizations of Pakistan would use the proposed framework to improve their IdM processes and achieve diverse IdM services.

TOWARDS SELF-ORGANIZING DISTRIBUTED COMPUTING FRAMEWORKS: THE H2O APPROACH

2003 ◽  
Vol 13 (02) ◽  
pp. 273-290 ◽  
Author(s):  
DAWID KURZYNIEC ◽  
TOMASZ WRZOSEK ◽  
DOMINIK DRZEWIECKI ◽  
VAIDY SUNDERAM
Keyword(s):  
Distributed Computing ◽  
Access Control ◽  
Resource Sharing ◽  
Value Added ◽  
Third Party ◽  
Minimal State ◽  
Framework Design ◽  
Control Schemes ◽  
Service Oriented ◽  
Self Organizing

A novel component-based, service-oriented framework for distributed metacomputing is described. Adopting a provider-centric view of resource sharing, this framework emphasizes lightweight software infrastructures that maintain minimal state, and interface to current and emerging distributed computing standards. In this model, resource owners host a software backplane onto which owners, clients, or third-party resellers may load components or component-suites that deliver value added services without compromising owner security or control. Standards-based descriptions of services facilitate publication and discovery via established schemes. The architecture of the container framework, design of components, security and access control schemes, and preliminary experiences are described in this paper.

A Trust-Aware Access Control Policy for Cloud Data Protection

2013 ◽  
Vol 411-414 ◽  
pp. 40-44
Author(s):  
Xiao Yong Tang ◽  
Jin Wei Li ◽  
Gui Ping Liao
Keyword(s):  
Cloud Computing ◽  
Access Control ◽  
Data Privacy ◽  
Large Scale ◽  
Control Policy ◽  
Trust Model ◽  
Data Encryption ◽  
Access Control Policy ◽  
Cloud Users ◽  
Cloud User

The use of Cloud computing systems to run large-scale scientific, business and consumer based IT applications has increased rapidly in recent years. More and more Cloud users concern the data privacy protection and security in such systems. A natural way to tackle this problem is to adopt data encryption and access control policy. However, this solution is inevitably introduced a heavy computation overhead. In this paper, we first establish a trust model between Cloud servers and Cloud users. Then, we build the trust-aware attribute-based access control policies according to Cloud user trust level and Cloud request attributes. This technique can give different encryption and decryption data to Cloud user and substantive reduce the computation overhead of Cloud computing.

scholarly journals Security Challenges in Healthcare Cloud Computing: A Systematic Review

2016 ◽  
Vol 9 (3) ◽  
pp. 157 ◽  
Author(s):  
Esmaeil Mehraeen ◽  
Marjan Ghazisaeedi ◽  
Jebraeil Farzi ◽  
Saghar Mirshekari
Keyword(s):  
Systematic Review ◽  
Cloud Computing ◽  
Access Control ◽  
Identity Management ◽  
Research Question ◽  
Security And Privacy ◽  
Healthcare Data ◽  
Security Challenges ◽  
Authentication And Authorization ◽  
Hypervisor Security

<p><strong>BACKGROUND:</strong> Healthcare data are very sensitive records that should not be made available to unauthorized people in order for protecting patient's information security. However, in progressed technologies as cloud computing which are vulnerable to cyber gaps that pose an adverse impact on the security and privacy of patients’ electronic health records and in these situations, security challenges of the wireless networks need to be carefully understood and considered. Recently, security concerns in cloud computing environment are a matter of challenge with rising importance.</p><p><strong>OBJECTIVE:</strong> In this study a systematic review to investigate the security challenges in cloud computing was carried out. We focused mainly on healthcare cloud computing security with an organized review of 210 full text articles published between 2000 and 2015.</p><p><strong>METHOD:</strong> A systematic literature review was conducted including PubMed, Science direct, Embase, ProQuest, Web of science, Cochrane, Emerald, and Scopus databases.</p><p><strong>FINDINGS:</strong> Using the strategies described, 666 references retrieved (for research question one 365, research question two 201, and research question three 100 references).</p><p><strong>IMPROVEMENTS:</strong> Review of articles showed that for ensuring healthcare data security, it is important to provide authentication, authorization and access control within cloud's virtualized network. Issues such as identity management and access control, Internet-based access, authentication and authorization and cybercriminals are major concerns in healthcare cloud computing. To manage these issues<strong> </strong>many involved events such as Hybrid Execution Model, VCC-SSF, sHype Hypervisor Security Architecture, Identity Management, and Resource Isolation approaches<em> </em>have to be defined for using cloud computing threat management processes.</p>

Sign in / Sign up

Export Citation Format

Share Document