TOrBAC: A Trust Organization Based Access Control Model for Cloud Computing Systems
Mustapha Ben Saidi1, Anas Abou Elkalam2, Abderrahim Marzouk3
1Mustapha Ben Saidi Lab. MAI. FST Settat University Hassan 1 Settat Morocco.
2Anas Abou Elkalam Cadi ayyad University, ENSAof Marrakech, OSCARS laboratory, Marrakech Morocco.
3Abderrahim Marzouk Lab MAI. FST University Hassan 1er Settat Morocco.
Manuscript received on September 01, 2012. | Revised Manuscript received on September 02, 2012. | Manuscript published on September 05, 2012. | PP: 1-9 | Volume-2 Issue-4, September 2012. | Retrieval Number: D0913072412/2012©BEIESP
Open Access | Ethics and Policies | Cite
© The Authors. Published By: Blue Eyes Intelligence Engineering and Sciences Publication (BEIESP). This is an open access article under the CC BY-NC-ND license (http://creativecommons.org/licenses/by-nc-nd/4.0/)
Abstract: The access control models like DAC, MAC, RBAC, TBAC, TMAC, DomBAC, etc. mainly model security policies for information systems having a centralized governance. Moreover, they only specify permissions and prohibitions, sometimes obligations. Besides that, they generally do not allow the establishment of activated, dynamic and adapted rules. However, such rules are highly useful in a cloud environment where IT governance is shared, used or managed by different entities. In this paper, we propose a new model for specifying such security policies. This model called Trust Organization Based Access Control (TOrBAC) which relies on the use of a recursive formula for calculating a confidence index. We also formalize our work using a language based on first order logic and we apply it to a cloud computing (CC) related use case.
Keywords: Cloud computing; Access model control; security