Title: An access control framework for multi-level security in cloud environments

Authors: Hongbin Zhang; Junshe Wang; Jiang Chang; Ning Cao

Addresses: School of Information Science and Engineering, Hebei University of Science and Technology, Shijiazhuang, 050018, China; Hebei Key Laboratory of Network and Information Security, Hebei Normal University, 050024, China ' School of Information Science and Engineering, Hebei University of Science and Technology, Shijiazhuang, 050018, China ' School of Information Science and Engineering, Hebei University of Science and Technology, Shijiazhuang, 050018, China ' College of Information Engineering, Qingdao Binhai University, Qingdao, 266555, China

Abstract: Due to the cloud system always consists of many domain, we design an access control framework which provides rigorous multilevel security in single domain and a multilevel mapping method between domains. In each domain, a policy processing method is designed to handle the multilevel policies and creates a DAG model which can be converted to a hierarchical access control structure that ensures rigorous multilevel security in intra domains. And between domains, the mapping method based on quantised subject attributes is proposed to determine the subject's security level in its target domain. Credibility is used to adjust the mapping value in the framework in order to achieve flexible multilevel inter-domain access control. Experimental results from simulations show that the designed model can realise accurate inter-domain mapping and achieve multilevel security access control in inter-domain.

Keywords: multi-level; security; access control; cloud; multi-attributes.

DOI: 10.1504/IJICA.2018.093731

International Journal of Innovative Computing and Applications, 2018 Vol.9 No.3, pp.134 - 141

Received: 18 Jul 2017
Accepted: 06 Dec 2017
Published online: 02 Aug 2018 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article