• DocumentCode
    2445199
  • Title

    SaaS Access Control Research Based on UCON

  • Author

    Zhu, Junli ; Wen, Qiaoyan

  • Author_Institution
    State Key Lab. of Networking & Switching Technol., Beijing Univ. of Posts & Telecommun., Beijing, China
  • fYear
    2012
  • fDate
    23-25 Nov. 2012
  • Firstpage
    331
  • Lastpage
    334
  • Abstract
    SaaS access control security issues become increasingly significant. How to ensure that user data´s confidentiality, integrity and scalability has become the focus problems. To solve this problem, we have studied the usage control (UCON) model which can achieve dynamic access control by mutability of attributes and continuity of decisions. SaaS access control needs the duribility of obligations. However, UCON does not have this feature. In order to achieve fine-grained, and secure access control preferably, we propose a UCON post-obligation model. At the same time, we use set theory and logic predicates to define the UCON post-obligation model. On that basis, we combine different UCON models and features of SaaS, and put forward a common access control flow to achieve the user data´s privacy protection.
  • Keywords
    authorisation; cloud computing; data privacy; formal logic; set theory; SaaS access control research; SaaS access control security issues; UCON post-obligation model; access control flow; dynamic access control; logic predicates; obligation duribility; set theory; software-as-a-service; usage control model; user data confidentiality; user data privacy protection; Authorization; Data privacy; Educational institutions; Access Control; SaaS; UCON;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Digital Home (ICDH), 2012 Fourth International Conference on
  • Conference_Location
    Guangzhou
  • Print_ISBN
    978-1-4673-1348-3
  • Type

    conf

  • DOI
    10.1109/ICDH.2012.50
  • Filename
    6376434