Authors: Hongbin Zhang; Junshe Wang; Jiang Chang; Ning Cao
Addresses: School of Information Science and Engineering, Hebei University of Science and Technology, Shijiazhuang, 050018, China; Hebei Key Laboratory of Network and Information Security, Hebei Normal University, 050024, China ' School of Information Science and Engineering, Hebei University of Science and Technology, Shijiazhuang, 050018, China ' School of Information Science and Engineering, Hebei University of Science and Technology, Shijiazhuang, 050018, China ' College of Information Engineering, Qingdao Binhai University, Qingdao, 266555, China
Abstract: Due to the cloud system always consists of many domain, we design an access control framework which provides rigorous multilevel security in single domain and a multilevel mapping method between domains. In each domain, a policy processing method is designed to handle the multilevel policies and creates a DAG model which can be converted to a hierarchical access control structure that ensures rigorous multilevel security in intra domains. And between domains, the mapping method based on quantised subject attributes is proposed to determine the subject's security level in its target domain. Credibility is used to adjust the mapping value in the framework in order to achieve flexible multilevel inter-domain access control. Experimental results from simulations show that the designed model can realise accurate inter-domain mapping and achieve multilevel security access control in inter-domain.
Keywords: multi-level; security; access control; cloud; multi-attributes.
International Journal of Innovative Computing and Applications, 2018 Vol.9 No.3, pp.134 - 141
Available online: 19 Jul 2018 *Full-text access for editors Access for subscribers Purchase this article Comment on this article