@inbook{29e9ef61d5c040b994ff36c2327eea0c,
title = "A trust management framework for secure cloud data storage using cryptographic role-based access control",
abstract = "In recent times, there has been an increasing development of storing data securely in the cloud. The Role-based access control (RBAC) model, a widely used access control model, can provide a flexible way for data owners to manage and share their data in the cloud environment. To enforce the access control policies in the cloud, several cryptographic RBAC schemes have been proposed recently, which integrate cryptographic techniques with RBAC models to secure data storage in an outsourced environment such as a cloud. However, these schemes do not address the issue of trust in such a data storage system. In this paper, we introduce a trust management framework which can enhance the security of data in cloud storage systems using cryptographic RBAC schemes. The trust management framework provides an approach for each party in such a cloud storage system to determine the trustworthiness of other parties. The framework consists of a series of trust models, which (i) enable the users and the data owners to decide whether to interact with a particular role for accessing and sharing data in the system and (ii) allow the role managers to evaluate the trustworthiness of users and data owners. These trust models take into account role inheritance and hierarchy in the evaluation of trustworthiness of the roles. In addition, we present a design of a trust-based cloud storage system which shows how the trust models for users and roles can be integrated into a system that uses cryptographic RBAC schemes.",
keywords = "Cryptographic, RBAC, Role-based access control, Trust model",
author = "Lan Zhou and Vijay Varadharajan and Michael Hitchens",
year = "2014",
doi = "10.1007/978-3-662-44788-8_14",
language = "English",
isbn = "9783662447871",
series = "Communications in Computer and Information Science",
publisher = "Springer, Springer Nature",
pages = "226--251",
editor = "Obaidat, {Mohammad S.} and Joaquim Filipe",
booktitle = "E-Business and Telecommunications",
address = "United States",
note = "10th International Joint Conference on E-Business and Telecommunications, ICETE 2013 ; Conference date: 29-07-2013 Through 31-07-2013",
}