Wei Ma,Zhen Han,Xiaoyong Li,Jiqiang Liu

DOI: https://doi.org/10.1109/cc.2016.7489984

2016-01-01

China Communications

Abstract:Separation issue is one of the most important problems about cloud computing security. Tenants should be separated from each other based on cloud infrastructure and different users from one tenant should be separated from each other with the constraint of security policies. Learning from the notion of trusted cloud computing and trustworthiness in cloud, in this paper, a multi-level authorization separation model is formally described, and a series of rules are proposed to summarize the separation property of this model. The correctness of the rules is proved. Furthermore, based on this model, a tenant separation mechanism is deployed in a real world mixed-critical information system. Performance benchmarks have shown the availability and efficiency of this mechanism.

Bo Tang,Ravi Sandhu,Qi Li

DOI: https://doi.org/10.1002/cpe.3446

2013-01-01

Abstract:The cloud service model intrinsically caters to multiple tenants, most obviously in public clouds but also in private clouds for large organizations. Currently most cloud service providers (CSPs) isolate user activities and data within a single tenant boundary with no or minimum cross-tenant interaction. It is anticipated that this situation will evolve soon to foster cross-tenant collaboration supported by Authorization as a Service (AaaS). At present there is no widely accepted model for cross-tenant authorization. Recently, Calero et al [12] informally presented a multi-tenancy authorization system (MTAS) which extends the well-known role-based access control (RBAC) model by building trust relations among collaborating tenants. In this paper we formalize this MTAS model and propose extensions for finer-grained cross-tenant trust. We also develop an administration model for MTAS (AMTAS). We demonstrate the utility and practical feasibility of MTAS by means of an example policy specification in XACML. We anticipate researchers will develop additional multi-tenant authorization models before eventual consolidation and unification.

Xiao-Yong Li,Yong Shi,Yu Guo,Wei Ma

DOI: https://doi.org/10.1109/cise.2010.5677061

2010-01-01

Abstract:Though cloud computing has many advantages, it still faces a big challenge of security and privacy problem. This problem is also an obstacle to cloud computing since no one is willing to run his businesses in facilities he has no control over it. Moreover, since cloud computing is a multi-tenancy IT service mode, there should be a capability to compartmentalize different customers in cloud facilities; therefore, security duty separation between CSP and customers must be supported in cloud. However, this security duty separation is not common in traditional security mechanisms. Multi-tenancy based access control model (MTACM) was designed to embed the security duty separation principle in cloud; it was a two granule level access control mechanism, one was tenant granule for CSP to compartmentalize different customers, the other was application granule for customers to control the access to their own applications. MTACM was technically and practically feasible. A prototype introduced in this paper showed that MTACM has a good performance.

G. Zhao,Q. X. Ye,J. H. Yang,L. Y. Chen

2015-01-01

Abstract:This paper presents a new model of educational information resources co-construction and sharing based on cloud computing. In this model, educational information resources sharing subjects are colleges, enterprises and network users. This paper studies the power sources of these three main subjects to participate in resource co-construction and sharing, according to the characteristics of different subjects proposed incentives mechanism. Education information resource co-construction and sharing based on cloud computing showed reproducibility, cross-regional and anonymity features, this paper proposes rights protection mechanisms to solve the problems above.

Wenjuan Li,Lingdi Ping

DOI: https://doi.org/10.1007/978-3-642-10665-1_7

2009-01-01

Abstract:Trust is one of the most important means to improve security and enable interoperability of current heterogeneous independent cloud platforms. This paper first analyzed several trust models used in large and distributed environment and then introduced a novel cloud trust model to solve security issues in cross-clouds environment in which cloud customer can choose different providers' services and resources in heterogeneous domains can cooperate. The model is domain-based. It divides one cloud provider's resource nodes into the same domain and sets trust agent. It distinguishes two different roles cloud customer and cloud server and designs different strategies for them. In our model, trust recommendation is treated as one type of cloud services just like computation or storage. The model achieves both identity authentication and behavior authentication. The results of emulation experiments show that the proposed model can efficiently and safely construct trust relationship in cross-clouds environment.

Wenjuan Li,Lingdi Ping,Xuezeng Pan

DOI: https://doi.org/10.1109/iceie.2010.5559829

2010-01-01

Abstract:Security and interoperability is the biggest challenge to promote cloud computing currently. Trust has proved to be one of the most important and effective alternative means to construct security in distributed systems. In order to efficiently and safely construct entities' trust relationship in cloud and cross-clouds environment, this paper proposed a novel cloud trust model and a new cloud security framework. The propose trust model is domain-based. It divides one cloud provider's resource nodes into the same trust domain. It designs different trust strategies for different roles. Trust recommendation is treated as one type of cloud services just like computation or storage. Based on the proposed trust model, it introduced a novel cloud security framework with an independent trust management module. Using the proposed security model, it introduced some trust-based security mechanisms. Results of simulation experiments show that the proposed security model can achieve high transaction success rate with high trust accuracy.

Qiong Zuo,Meiyi Xie,Wei-Tek Tsai

DOI: https://doi.org/10.1587/transcom.2015ADI0002

2016-01-01

Abstract:Hierarchical multi-tenancy, which enables tenants to be divided into subtenants, is a flexible and scalable architecture for representing subsets of users and application resources in the real world. However, the resource isolation and sharing relations for tenants with hierarchies are more complicated than those between tenants in the flat Multi-Tenancy Architecture. In this paper, a hierarchical tenant-based access control model based on Administrative Role-Based Access Control in Software-as-a-Service is proposed. Autonomous Areas and AA-tree are used to describe the autonomy and hierarchy of tenants, including their isolation and sharing relationships. AA is also used as an autonomous unit to create and deploy the access permissions for tenants. Autonomous decentralized authorization and authentication schemes for hierarchical multi-tenancy are given out to help different level tenants to customize efficient authority and authorization in large-scale SaaS systems.

Lizhe Wang,Rajiv Ranjan,Jinjun Chen,Boualem Benatallah

2011-01-01

Abstract:Multitenancy is one of the basic principles of Cloud Computing. Sharing resources is one of the main advantages of the Cloud Computing paradigm and multitenancy technology is one of the most effective cornerstones from a Software Architecture perspective. Cloud Computing has provided a reliable, cost-efficient, cutting-edge infrastructure for advanced software delivery models such as Software-as-a-Service (SaaS). Most SaaS platforms are built on Multi-Tenant Architectures (MTA), which allows modeling and exploiting efficiently huge amounts of computing resources and large data management

Chaojun Zhao,Can Yang,Ran Zhao

DOI: https://doi.org/10.1109/ccpqt56151.2022.00038

2022-01-01

Abstract:With the development of cloud computing and the application of multi-tenant technology, multi-tenant application platforms need to ensure the isolation and security of data when providing cloud services through resource sharing and on-demand customization, and also need to prohibit users from illegally accessing unauthorized resources. In addition, when users access relevant tenant information content across tenants, it is necessary to ensure the security in the cross-tenant collaboration scenario. Based on this, this paper proposes a cross-tenant user access control model, including its components, deployment mechanism and specific implementation process, and then we comprehensively analyzed the characteristics and performance of the model. This model not only ensures the security of data within each tenant, but also facilitates distributed cross-domain access among multiple tenants.

Jiangfeng Li,Zhenyu Liao,Chenxi Zhang,Yang Shi

DOI: https://doi.org/10.1155/2016/2935638

IF: 1.43

2016-01-01

Mathematical Problems in Engineering

Abstract:Since more and more applications and services have been transferred from servers in the B/S architecture to cloud, user access control has become a significant part in a multitenancy cloud platform. Role based access control model makes users participate in an enterprise system as particular identities. However, in a multitenancy cloud environment, it has a high probability that the information of tenants has been leaked by using existing role based access control (RBAC) model. Moreover, management problems may emerge in the multitenancy platform with the increment of the number of tenants. In this paper, a novel concept of 4D-role is presented. With a detailed definition on the concept of 4D-role, a 4D-role based multitenancy model is proposed for running various applications and services in the multitenancy cloud platform. A theoretical analysis indicates that the model has the characters of tenant isolation, role hierarchy, and administration independence. The three characters are also verified by experimental evaluation. Moreover, the evaluation results indicate that the model has a good performance in using cloud resources when large-scale users are operating in the cloud platform simultaneously.

Tang Bo,Li Qi,Sandhu Ravi

DOI: https://doi.org/10.1109/PST.2013.6596058

2013-01-01

Abstract:Most cloud services are built with multi-tenancy which enables data and configuration segregation upon shared infrastructures. In this setting, a tenant temporarily uses a piece of virtually dedicated software, platform, or infrastructure. To fully benefit from the cloud, tenants are seeking to build controlled and secure collaboration with each other. In this paper, we propose a Multi-Tenant Role-Based Access Control (MT-RBAC) model family which aims to provide fine-grained authorization in collaborative cloud environments by building trust relations among tenants. With an established trust relation in MT-RBAC, the trustee can precisely authorize cross-tenant accesses to the truster's resources consistent with constraints over the trust relation and other components designated by the truster. The users in the trustee may restrictively inherit permissions from the truster so that multi-tenant collaboration is securely enabled. Using SUN's XACML library, we prototype MT-RBAC models on a novel Authorization as a Service (AaaS) platform with the Joyent commercial cloud system. The performance and scalability metrics are evaluated with respect to an open source cloud storage system. The results show that our prototype incurs only 0.016 second authorization delay for end users on average and is scalable in cloud environments.

Wenchang Shi,Zhiyu Wang,Ying Huang

DOI: https://doi.org/10.13245/j.hust.160318

2016-01-01

Abstract:Aimed at the needs of data isolation and data sharing between tenants in the IaaS (infra-structure as a service)clouds,an access control model,the MTIAC (multi-tenancy IaaS access con-trol)model,was proposed.MTIAC focuses on three kinds of common access operations in the IaaS environment,which are hypervisor authorization,the allocation of resources to virtual machines,and the communication between virtual machines.The discretionary access control policies of MTIAC al-low administrators to define label sets and conflicting label sets,as well as to assign these labels to workloads.The mandatory access control policies of MTIAC assures that no conflicting workloads will run on the same host machine,while non-conflicting virtual machines can share data in a con-trolled way.MTIAC updates both subjects′and objects′relevant attributes after the authorized opera-tions have been successfully enforced,in order to achieve safe transitions of status.Finally,the trus-ted virtual datacenter (TVDc)technology example illustrates the availability of MTIAC.

Shuangshuang Xu,Yang Xin,Hongliang Zhu,Shoushan Luo,Yuling Chen

DOI: https://doi.org/10.1109/SSCI44817.2019.9002757

2019-01-01

Abstract:Security of Platform as a Service for multi-tenant becomes a key factor for the sustainable development of the system. This paper analyzes the limitations and shortcomings of traditional identity authentication. Identity authentication is realized through the ticket authentication method. Considering the dynamic and timeliness of resources in cloud computing, this paper proposes a dynamic access control method based on Role-Based Access Control and usage control model from the perspective of business conversation, so as to realize the dynamic access control of tenants to resources in Platform as a Service. The paper elaborates on the security and usability of the key generation, distribution, update, and metadata access control processes. Practice shows that the cloud resource access control model can flexibly realize the control of cloud resources such as authority separation, resource attribute restriction and utilization control, so as to better meet the demand of cloud resource access control with multi-tenant sharing and dynamic characteristics in cloud environment.

Wei-Tek Tsai,Qihong Shao

2011-01-01

Abstract:Cloud computing has received significant attention recently as it is a new computing infrastructure to enable rapid delivery of computing resources as a utility in a dynamic, scalable, and visualized manner. SaaS (Software-as-a-Service) provide a now paradigm in cloud computing, which goal is to provide an effective and intelligent way to support end users’ on-demand requirements to computing resources, including maturity levels of customizable, multi-tenancy and scalability. To meet requirements of on-demand, my thesis discusses several critical research problems and proposed solutions using real application scenarios: Service providers receive multiple requests from customers, how to prioritize those service requests to maximize the business values is one of the most important issues in cloud. An innovative prioritization model is proposed, which uses different types of information, including customer, service, environment and workflow information to optimize the performance of the system. To provide “on-demand” services, an accurate demand prediction and provision become critical for the successful of the cloud computing. An effective demand prediction model is proposed, and applied to a real mortgage application.To support SaaS customization and fulfill the various functional and quality requirements of individual tenants, a unified and innovative multi-layered customization framework is proposed to support and manage the variability of SaaS applications. To support scalable SaaS, a hybrid database design to support SaaS customization with two-layer database partitioning is proposed. To support secure SaaS, O-RBAC, an ontology based RBAC (Role based Access Control) model is used for Multi-Tenancy Architecture in clouds. To support a significant number of tenants, an easy to use SaaS construction framework is proposed.As a summary, this thesis discusses the most important research problems in cloud computing, towards effective and intelligent SaaS. The research in this thesis is critical to the development of cloud computing and provides fundamental solutions to those problems.

Wei-Tek Tsai,Qihong Shao

DOI: https://doi.org/10.1109/ISADS.2011.21

2011-01-01

Abstract:In cloud computing, security is an important issue due to the increasing scale of users. Current approaches to access control on clouds do not scale well to multi-tenancy requirements because they are mostly based on individual user IDs at different granularity levels. However, the number of users can be enormous and causes significant overhead in managing security. RBAC (Role-Based Access Control) is attractive because the number of roles is significantly less, and users can be classified according to their roles. This paper proposes a RBAC model using a role ontology for Multi-Tenancy Architecture (MTA) in clouds. The ontology is used to build up the role hierarchy for a specific domain. Ontology transformation operations algorithms are provided to compare the similarity of different ontology. The proposed framework can ease the design of security system in cloud and reduce the complexity of system design and implementation.

Yan Danfeng,Yang Fangchun

2011-01-01

China Communications

Abstract:Security is a key problem for the development of Cloud Computing. A common service security architecture is a basic abstract to support security research work. The authorization ability in the service security faces more complex and variable users and environment. Based on the multidimensional views, the service security architecture is described on three dimensions of service security requirement integrating security attributes and service layers. An attribute-based dynamic access control model is presented to detail the relationships among subjects, objects, roles, attributes, context and extra factors further. The model uses dynamic control policies to support the multiple roles and flexible authority. At last, access control and policies execution mechanism were studied as the implementation suggestion.

Qianwen Chen,Zude Zhou,Xiaomei Zhang,Xuemei Jiang

DOI: https://doi.org/10.1115/msec2017-2719

2017-01-01

Abstract:Cloud manufacturing is a new service-oriented networked manufacturing mode based on the concept of "Manufacture as a Service" and achieves the sharing of manufacturing resources and manufacturing capacity. Multi-tenancy technology can improve utilization efficiency of manufacturing resources and ensure information security among tenants, enabling users to share the cloud manufacturing resources better. To execute this new mode, isolation access and on-demand services are indispensable. However, the traditional access control model cannot satisfy the demands of multi-tenant environment on cloud manufacturing platform. To solve the demands in such an environment, a model named Multi-Tenant Access Control Model for Cloud Manufacturing (CM-MTAC) is proposed. Based on cloud manufacturing architecture, we build a hierarchical cloud manufacturing access control architecture combining multi-tenancy. Considering the demands under this condition, the elements of cloud manufacturing access control model and the relationships between them are redefined by extending the ABAC model. Then multi-tenancy authorization framework is proposed and XACML language is used to describe the policy to provide our model with on-demand service, isolation access and inter-tenant collaboration. Finally, we develop this model into the cloud manufacturing monitoring platform. Results show that our model, compared with traditional models, has a better performance of on-demand service, isolation access and inter-tenant cooperation under the environment of cloud manufacturing.

JIN Shi-jian,CAI Hong-ming,JIANG Li-hong

DOI: https://doi.org/10.3969/j.issn.1001-3695.2013.07.054

2013-01-01

Abstract:In order to control accessing to system resources in isolation and to manage requests from different group of users uniformly,this paper proposed the multi-tenant service oriented access control(MSOAC) model.It firstly analyzed the relationship among elements of business model,and identified the organization model,and related resource models.After that it transformed business model into MSOAC model,and then built the access control module to configure and run the model.Lastly,it examined the feasibility and correctness of the model using transportation and logistics information platform.The result shows that the MSOAC model can properly be used to provide a simple and flexible access control solution in multi-tenant environment.

Wenbo Su,Qu Liu,Chuang Lin,Sherman Shen

DOI: https://doi.org/10.1109/icccn.2015.7288430

2015-01-01

Abstract:Software as a Service (SaaS) has become an important application development and service delivery model. Among different architectures, multi-tenant architecture (MTA) not only has advantage on maintenance, but also increases resource utilization by sharing instances. However, sharing instances brings challenges to the security of the service. As one of the three principal properties of the security, availability receives more and more attentions. Recently, there are extensive efforts on technical methods to implement a secure multi-tenant SaaS, but few works on the modeling and analysis of its availability. In this paper, we firstly present the availability issues of the multi-tenant SaaS. Two important mechanisms to implement the MTA SaaS are then introduced: network isolation and database sharing. After that, a stochastic Petri net (SPN) model is developed to analyze the availability. Specific metrics are proposed to measure the availability both from the aspects of the system and the tenant. To extend the SPN model for large scale analysis, we solve the state space explosion problem of SPN model based on the theory of Markov chain aggregation. Finally, numerical results are provided to demonstrate the effectiveness of the SPN model and the analysis is efficient.

2015-04-07

Abstract:Technologies are presented for a hybrid cloud-based service model combining separate database/separate schema, shared database/separate schema, and shared database/shared schema architectures suitable for serving multiple tenants while addressing varying security needs. Roles and security level needs of different tenants may be determined based on tenant declaration or inference from tenant attributes. Tenants may then be assigned to suitable clouds or sub-clouds based on their security level needs. In some examples, a claims-based access control authorization model such as federation may be employed to support interactions between the three different types of clouds or sub-clouds under the umbrella of a single cloud-based service provider while maintaining application and data security.