Multi-Trust_Or BAC: Access Control Model for Multi-Organizational Critical Systems Migrated To the Cloud
Mustapha Ben Saidi1, Abderrahim Marzouk2
1Mustapha Ben Saidi. FST Settat University Hassan 1 Settat Department of Mathematics and computers sciences Lab. MAI; Morocco.
2Abderrahim Marzouk. FST University Hassan 1er Settat Department of Mathematics and computers sciences; Lab MAI Morocco.
Manuscript received on April 05, 2013. | Revised Manuscript received on April 28, 2013. | Manuscript published on May 05, 2013. | PP: 51-55 | Volume-3, Issue-2, May 2013. | Retrieval Number: B1426053213/2013©BEIESP
Open Access | Ethics and Policies | Cite
© The Authors. Published By: Blue Eyes Intelligence Engineering and Sciences Publication (BEIESP). This is an open access article under the CC BY-NC-ND license (http://creativecommons.org/licenses/by-nc-nd/4.0/)
Abstract: Security of information systems is a problem chronic, the arrival of cloud computing as a new computing model, feeds the difficulty of implementing effective solutions. Thus more research is currently focused on data security in the cloud, and especially the issue of confidentiality. In this paper we propose a new protocol access control for complex, heterogeneous, interoperable, and distributed systems in the context of Cloud Computing : « Multi-TrustOrBAC » (MultiOrganization – Trust Based Access Control). This protocol allows a TTP «Trust Tierd Party  » to force users belonging to several organizations to cooperate to meet the security policies defined independently by them. The aim is to offer to organizations working together and having decided to migrate to the cloud, a means of real-time monitoring of their safety. Our solution is based on both the concept of trust assigned to users and to the definition of an order on the set of security policies. The logical formalism is used to specify and describe the rules of the security policies of different organizations.
Keywords: Policy security, interoperable system, heterogeneous and distributed systems, actions weighted, access control.