Ferrara, Anna, Squicciarinni, Anna, Liao, Cong and Nguyen Lam, Truc (2017) Toward group-based user-attribute policies in azure-like access control systems. In IFIP Annual Conference on Data and Applications Security and Privacy: DBSec 2017: Data and Applications Security and Privacy XXXI. vol. 10359, Springer.. (doi:10.1007/978-3-319-61176-1).
Abstract
Cloud resources are increasingly pooled together for collaboration among users from different administrative units. In these settings, separation of duty between resource and identity management is strongly encouraged, as it streamlines organization of resource access in cloud. Yet, this separation may hinder availability and accessibility of resources, negating access to authorized and entitled subjects. In this paper, we present an in-depth analysis of group-reachability in user attribute-based access control. Starting from a concrete instance of an Access Control supported by the Azure platform, we adopt formal verification methods to demonstrate how it is possible to mitigate access availability issues, which may arise as per-attribute criteria groups are deployed.
More information
Identifiers
Catalogue record
Export record
Altmetrics
Contributors
University divisions
- Faculties (pre 2018 reorg) > Faculty of Physical Sciences and Engineering (pre 2018 reorg) > Electronics & Computer Science (pre 2018 reorg) > Cyber Security (pre 2018 reorg)
Current Faculties > Faculty of Engineering and Physical Sciences > School of Electronics and Computer Science > Electronics & Computer Science (pre 2018 reorg) > Cyber Security (pre 2018 reorg)
School of Electronics and Computer Science > Electronics & Computer Science (pre 2018 reorg) > Cyber Security (pre 2018 reorg)
Current Faculties > Faculty of Engineering and Physical Sciences > School of Electronics and Computer Science > Cyber Security > Cyber Security (pre 2018 reorg)
School of Electronics and Computer Science > Cyber Security > Cyber Security (pre 2018 reorg) - Faculties (pre 2018 reorg) > Faculty of Physical Sciences and Engineering (pre 2018 reorg) > Electronics & Computer Science (pre 2018 reorg)
Current Faculties > Faculty of Engineering and Physical Sciences > School of Electronics and Computer Science > Electronics & Computer Science (pre 2018 reorg)
School of Electronics and Computer Science > Electronics & Computer Science (pre 2018 reorg)
Download statistics
Downloads from ePrints over the past year. Other digital versions may also be available to download e.g. from the publisher's website.