Trust enhanced secure role-based access control on encrypted data in cloud (abstract of keynote talk)

Vijay Varadharajan*

*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceedingConference proceeding contribution

Abstract

In this talk I will begin with a brief look at current trends in the technology scenery and some of the key security challenges that are impacting on business and society. In particular, on the one hand there have been tremendous developments in cyber technologies such as cloud, Big Data and Internet of Technologies. Then we will consider security and trust issues in cloud services and cloud data. In this talk, we will focus on policy based access to encrypted data in the cloud. We will present a new technique, Role based Encryption (RBE), which integrates cryptographic techniques with role based access control. The RBE scheme allows policies defined by data owners to be enforced on the encrypted data stored in public clouds. The cloud provider will not be able to see the data content if the provider is not given the appropriate role by the data owner. We will present a practical secure RBE based hybrid cloud storage architecture, which allows an organisation to store data securely in a public cloud, while maintaining the sensitive information related to the organisation’s structure in a private cloud. Then we will consider trust issues in RBE based secure cloud data systems. We will discuss two types of trust models that assist (i) the data owners/users to evaluate the trust on the roles/role managers in the system as well as (ii) the role managers to evaluate the trust on the data owners/users for when deciding on role memberships. These models will take into account the impact of role hierarchy and inheritance on the trustworthiness of the roles and users. We will also consider practical application of the trust models and illustrate how the trust evaluations can help to reduce the risks and enhance the quality of decision making by data owners and role managers of the cloud storage services.

Original languageEnglish
Title of host publicationTrust management X
Subtitle of host publication10th IFIP WG 11.11 International Conference, IFIPTM 2016, Proceedings
EditorsSheikh Mahbub Habib, Sjouke Mauw, Julita Vassileva, Max Mühlhäuser
Place of PublicationSwitzerland
PublisherSpringer, Springer Nature
Pagesix-ix
Number of pages1
Volume473
ISBN (Print)9783319413532
DOIs
Publication statusPublished - 2016
Event10th IFIP WG 11.11 International Conference on Trust Management, IFIPTM 2016 - Darmstadt, Germany
Duration: 18 Jul 201622 Jul 2016

Publication series

NameIFIP Advances in Information and Communication Technology
Volume473
ISSN (Print)1868-4238
ISSN (Electronic)1868-422X

Other

Other10th IFIP WG 11.11 International Conference on Trust Management, IFIPTM 2016
CountryGermany
CityDarmstadt
Period18/07/1622/07/16

Fingerprint Dive into the research topics of 'Trust enhanced secure role-based access control on encrypted data in cloud (abstract of keynote talk)'. Together they form a unique fingerprint.

Cite this