Secure administration of cryptographic role-based access control for large-scale cloud storage systems

Lan Zhou, Vijay Varadharajan*, Michael Hitchens

*Corresponding author for this work

Research output: Contribution to journalArticle

20 Citations (Scopus)

Abstract

Cloud systems provide significant benefits by allowing users to store massive amount of data on demand in a cost-effective manner. Role-based access control (RBAC) is a well-known access control model which can be used to protect the security of cloud data storage. Although cryptographic RBAC schemes have been developed recently to secure data outsourcing, these schemes assume the existence of a trusted administrator managing all the users and roles, which is not realistic in large-scale systems. In this paper, we introduce a cryptographic administrative model AdC-RBAC for managing and enforcing access policies for cryptographic RBAC schemes. The AdC-RBAC model uses cryptographic techniques to ensure that the administrative tasks are performed only by authorised administrative roles. Then we propose a role-based encryption (RBE) scheme and show how the AdC-RBAC model decentralises the administrative tasks in the RBE scheme thereby making it practical for security policy management in large-scale cloud systems.

Original languageEnglish
Pages (from-to)1518-1533
Number of pages16
JournalJournal of Computer and System Sciences
Volume80
Issue number8
DOIs
Publication statusPublished - Dec 2014

Keywords

  • Role-based access control
  • Administration
  • Cryptographic RBAC
  • Role-based encryption
  • Cloud computing
  • Data storage

Fingerprint Dive into the research topics of 'Secure administration of cryptographic role-based access control for large-scale cloud storage systems'. Together they form a unique fingerprint.

Cite this