PPL v2.0: Uniform Data Access and Usage Control on Cloud and Mobile

Author

Di Cerbo, Francesco ; Some, Doliere Francis ; Gomez, Laurent ; Trabelsi, Slim

Author_Institution

SAP product Security Res., Mougins, France

fYear

2015

fDate

18-18 May 2015

Firstpage

2

Lastpage

7

Abstract

Cloud storage is one of the most popular categories of market services. It provides an easy means for consumers to store and share their data, also in mobility through convenient apps. However, such valuable functionality raises several security concerns. Among them, the risk of sensitive information disclosure or, for professional data, the risk of compliance violations. In this paper, we propose an access and usage control framework for seamless, uniform and secure data sharing across cloud and mobile which keeps data under the control of its owner, that expresses preferences according to privacy or security needs. To our knowledge, this is the first effort addressing simultaneously and consistently cloud and mobile platforms. Our proposal offers access and usage control of managed resources relying on the security policy languages XACML and PPL (extended to make use of cloud and mobile contextual information) and on specific engines (cloud, mobile) to enforce them. A use case is presented, to illustrate the framework in action.

Keywords

authorisation; cloud computing; data privacy; mobile computing; PPL v2.0; XACML; access control; cloud storage; privacy needs; secure data sharing; security needs; security policy languages; uniform data access; usage control; Access control; Computer architecture; Data privacy; Engines; IEEE 802.11 Standard; Mobile communication; Cloud; Compliance; Mobile; Privacy; Security; Usage Control;

fLanguage

English

Publisher

ieee

Conference_Titel

TEchnical and LEgal aspects of data pRivacy and SEcurity, 2015 IEEE/ACM 1st International Workshop on

Conference_Location

Florence

Print_ISBN

978-1-4673-7097-4

Type

conf

DOI

10.1109/TELERISE.2015.9

Filename

7182462