Title: Achieving fine-grained access control and mitigating role explosion by utilising ABE with RBAC

Authors: Balamurugan Balusamy; Siddharth Ramachandran; Nalini Priya

Addresses: School of Information Technology and Engineering (SITE), Vellore Institute of Technology (VIT), Vellore – 632014, India ' School of Information Technology and Engineering (SITE), Vellore Institute of Technology (VIT), Vellore – 632014, India ' Department of Information Technology, Saveetha Engineering College, Thandalam, Chennai, Tamil Nadu – 602105, India

Abstract: Cloud systems can store a vast amount of sensitive data whose access must be well regulated. A good access control policy ensures the security of this data while providing high flexibility in terms of access management. In this paper, we introduce access control architecture to mitigate the issue of role-explosion in RBAC and achieve a high degree of fine-grained access control by following an attribute-based encryption scheme with RBAC. In our model, we propose a user-tree with a hierarchical structure composed of groups and sub-groups to which a user will be assigned. These sub-groups will have their own sets of attributes as well as common inherited attributes. A user assigned to a specific sub-group will receive a key with the specific attributes of the sub-group as well as the inherited attributes.

Keywords: cloud computing; cloud security; RBAC; role-based access control; fine-grained access control; role explosion; ABE; attribute-based encryption; cryptography.

DOI: 10.1504/IJHPCN.2017.083208

International Journal of High Performance Computing and Networking, 2017 Vol.10 No.1/2, pp.109 - 117

Available online: 13 Mar 2017 *

Full-text access for editors Access for subscribers Purchase this article Comment on this article