TY  - GEN
A1  - Sukmana, Muhammad Ihsan Haikal
A1  - Torkura, Kennedy A.
A1  - Graupner, Hendrik
A1  - Cheng, Feng
A1  - Meinel, Christoph
T1  - Unified Cloud Access Control Model for Cloud Storage Broker
T2  - 33rd International Conference on Information Networking (ICOIN 2019)
N2  - Cloud Storage Broker (CSB) provides value-added cloud storage service for enterprise usage by leveraging multi-cloud storage architecture. However, it raises several challenges for managing resources and its access control in multiple Cloud Service Providers (CSPs) for authorized CSB stakeholders. In this paper we propose unified cloud access control model that provides the abstraction of CSP's services for centralized and automated cloud resource and access control management in multiple CSPs. Our proposal offers role-based access control for CSB stakeholders to access cloud resources by assigning necessary privileges and access control list for cloud resources and CSB stakeholders, respectively, following privilege separation concept and least privilege principle. We implement our unified model in a CSB system called CloudRAID for Business (CfB) with the evaluation result shows it provides system-and-cloud level security service for cfB and centralized resource and access control management in multiple CSPs.
KW  - Cloud Storage Broker
KW  - Cloud access control and resource management
KW  - Unified cloud model
KW  - Privilege separation concept
KW  - Least privilege principle
KW  - Role-based access control
Y1  - 2019
SN  - 978-1-5386-8350-7
U6  - https://doi.org/10.1109/ICOIN.2019.8717982
SN  - 1976-7684
SP  - 60
EP  - 65
PB  - IEEE
CY  - Los Alamitos
ER  -