WCSE 2017
ISBN: 978-981-11-3671-9 DOI: 10.18178/wcse.2017.06.081

Access Control Mechanism Based on Role, Attribute and Trust in Multi-tenant Cloud Environment

Cong Wang, Ronghua Li, Yijie Shi

Abstract— In the light of the problem that current access control schemes in multi-tenant cloud envioronment are difficult to adapt to different tenants’ requirements of fine-grained division of permissions and can’t solve the trust problem among tenants when the user access another tenant’s resource. In this paper, we propose an access control mechanism suitable for multi-tenant cloud environment, which combines RBAC, ABAC and trust model. The access control mechanism based on role, attribute and trust meets the needs of cross-tenant access and fine-grained division of permissions. It is easy to check user's permission and solves trust problem between tenants when users access across tenants, improving the security of tenant’s data and reducing the complexity of implementation. It is a more fine-grained access control scheme suitable for dynamic cloud environment.

Index Terms— Multi-tenant Cloud Environment; Fine-grained Access Control; RBAC; ABAC; Trust Problem.

Cong Wang, Yijie Shi
State Key Laboratory of Networking and Switching Technology, Beijing University of Posts and Telecommunications, CHINA
Ronghua Li
China Mobile Communications Corporation, CHINA


Cite: Cong Wang, Ronghua Li, Yijie Shi, "Access Control Mechanism Based on Role, Attribute and Trust in Multi-tenant Cloud Environment," Proceedings of 2017 the 7th International Workshop on Computer Science and Engineering, pp. 470-475, Beijing, 25-27 June, 2017.