A Methodology for the Development and Verification of Access Control Systems in Cloud Computing

Abstract : Cloud computing is an emergent technology that has generated significant interest in the marketplace and is forecasted for high growth. Moreover, Cloud computing has a great impact on different type of users from individual consumers and businesses to small and medium size (SMBs) and enterprise businesses. Although there are many benefits to adopting Cloud computing, there are significant barriers to adoption, viz. security and privacy. In this paper, we focus on carefully planning security aspects regarding access control of Cloud computing solutions before implementing them and, furthermore, on ensuring they satisfy particular organizational security requirements. Specifically, we propose a methodology for the development of access control systems. The methodology is capable of utilizing existing security requirements engineering approaches for the definition and evaluation of access control models, and verification of access control systems against organizational security requirements using techniques that are based on formal methods. A proof of concept example is provided that demonstrates the application of the proposed methodology on Cloud computing systems.
Type de document :
Communication dans un congrès
Christos Douligeris; Nineta Polemi; Athanasios Karantjias; Winfried Lamersdorf. 12th Conference on e-Business, e-Services, and e-Society (I3E), Apr 2013, Athens, Greece. Springer, IFIP Advances in Information and Communication Technology, AICT-399, pp.88-99, 2013, Collaborative, Trusted and Privacy-Aware e/m-Services. 〈10.1007/978-3-642-37437-1_8〉
Liste complète des métadonnées

Littérature citée [16 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01470549
Contributeur : Hal Ifip <>
Soumis le : vendredi 17 février 2017 - 15:03:11
Dernière modification le : vendredi 17 février 2017 - 15:16:25
Document(s) archivé(s) le : jeudi 18 mai 2017 - 14:58:12

Fichier

978-3-642-37437-1_8_Chapter.pd...
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Antonios Gouglidis, Ioannis Mavridis. A Methodology for the Development and Verification of Access Control Systems in Cloud Computing. Christos Douligeris; Nineta Polemi; Athanasios Karantjias; Winfried Lamersdorf. 12th Conference on e-Business, e-Services, and e-Society (I3E), Apr 2013, Athens, Greece. Springer, IFIP Advances in Information and Communication Technology, AICT-399, pp.88-99, 2013, Collaborative, Trusted and Privacy-Aware e/m-Services. 〈10.1007/978-3-642-37437-1_8〉. 〈hal-01470549〉

Partager

Métriques

Consultations de la notice

154

Téléchargements de fichiers

47