ISBN: 978-981-11-3671-9 DOI: 10.18178/wcse.2017.06.081
Access Control Mechanism Based on Role, Attribute and Trust in Multi-tenant Cloud Environment
Abstract— In the light of the problem that current access control schemes in multi-tenant cloud
envioronment are difficult to adapt to different tenants’ requirements of fine-grained division of permissions
and can’t solve the trust problem among tenants when the user access another tenant’s resource. In this paper,
we propose an access control mechanism suitable for multi-tenant cloud environment, which combines
RBAC, ABAC and trust model. The access control mechanism based on role, attribute and trust meets the
needs of cross-tenant access and fine-grained division of permissions. It is easy to check user's permission
and solves trust problem between tenants when users access across tenants, improving the security of tenant’s
data and reducing the complexity of implementation. It is a more fine-grained access control scheme suitable
for dynamic cloud environment.
Index Terms— Multi-tenant Cloud Environment; Fine-grained Access Control; RBAC; ABAC; Trust Problem.
Cong Wang, Yijie Shi
State Key Laboratory of Networking and Switching Technology, Beijing University of Posts and
Telecommunications, CHINA
Ronghua Li
China Mobile Communications Corporation, CHINA
Cite: Cong Wang, Ronghua Li, Yijie Shi, "Access Control Mechanism Based on Role, Attribute and Trust in Multi-tenant Cloud Environment," Proceedings of 2017 the 7th International Workshop on Computer Science and Engineering, pp. 470-475, Beijing, 25-27 June, 2017.