TCloud: A Dynamic Framework and Policies for Access Control across Multiple Domains in Cloud Computing

TL;DR

This paper proposes TCloud, a dynamic trust-based cross-domain access control framework for cloud computing, integrating role-based policies with trust calculations to enhance security across multiple domains.

Contribution

It introduces a novel trust-based, flexible cross-domain access control framework that dynamically manages role assignments and conversions in cloud environments.

Findings

Framework effectively manages access control across multiple domains.

Role conversion is dynamic and based on trust levels.

Enhances security by integrating trust with role-based policies.

Abstract

In a cloud computing environment, access control policy is an effective means of fortification cloud users and cloud resources services against security infringements. Based on analysis of current cloud computing security characteristics, the preamble of the concept of trust, role-based access control policy, combined with the characteristics of the cloud computing environment, there are multiple security management domains, so a new cross domain framework is for access control is proposed which is based on trust. It will establish and calculate the degree of trust in the single as well as multiple domains. Role Based Access Control is used for the implementation of the access control policies in a single domain environment with the introduction of the trust concept. In multiple domains the access control will be based on the conversion of roles. On the basis of trust, and role based access control model, a new novel framework of flexible cross domain access control framework is presented. The role assignment and conversion will take place dynamically.