Identity and access management for cloud web services

Cloud computing plays an important role in fulfilling the present day organizational requirements. The recent attraction of cloud web services due to its availability and cost effectiveness is achieved by different flexible service models like, IaaS, SaaS, PaaS and multi tenancy. The privacy and security risks associated with these service models are high. In order to minimize the risks in cloud web service, organizations require a strong, flexible, scalable and accountable Identity and Access Management (IAM) system. In this paper, we propose an integrated identity and attribute based access management system for cloud web services. The combination of authentication and attribute based access control provides improved security to the cloud web service.

[1]  R. M. Alguliev,et al.  Identity management based security architecture of cloud computing on multi-agent systems , 2013, Third International Conference on Innovative Computing Technology (INTECH 2013).

[2]  Sushmita Ruj,et al.  Attribute based access control in clouds: A survey , 2014, International Conference on Signal Processing and Communications.

[3]  Eduardo B. Fernández,et al.  An analysis of security issues for cloud computing , 2013, Journal of Internet Services and Applications.

[4]  Huaglory Tianfield Security issues in cloud computing , 2012, 2012 IEEE International Conference on Systems, Man, and Cybernetics (SMC).

[5]  Deepti P. Theng,et al.  Analysing Security and Privacy Management for Cloud Computing Environment , 2014, 2014 Fourth International Conference on Communication Systems and Network Technologies.

[6]  T. Grance,et al.  SP 800-144. Guidelines on Security and Privacy in Public Cloud Computing , 2011 .

[7]  Muaz A. Niazi,et al.  Cloud identity management security issues & solutions: a taxonomy , 2014, Complex Adapt. Syst. Model..

[8]  Madjid Merabti,et al.  An access control model for cloud computing , 2014, J. Inf. Secur. Appl..

[9]  Yan Yang,et al.  An Identity and Access Management Architecture in Cloud , 2014, 2014 Seventh International Symposium on Computational Intelligence and Design.

[10]  Linlan Liu,et al.  Study on Action and Attribute-Based Access Control Model for Web Services , 2009, 2009 Second International Symposium on Information Science and Engineering.

[11]  Muttukrishnan Rajarajan,et al.  A survey on security issues and solutions at different layers of Cloud computing , 2013, The Journal of Supercomputing.

[12]  Chen Yuan,et al.  Attribute Based Access Control (ABAC)-Based Cross-Domain Access Control in Service-Oriented Architecture (SOA) , 2012, 2012 International Conference on Computer Science and Service System.

[13]  R. D. Dhungana,et al.  Identity management framework for cloud networking infrastructure , 2013, 2013 9th International Conference on Innovations in Information Technology (IIT).

[14]  Issa M. Khalil,et al.  Consolidated Identity Management System for secure mobile cloud computing , 2014, Comput. Networks.

[15]  Shin-Jer Yang,et al.  Design Role-Based Multi-tenancy Access Control Scheme for Cloud Services , 2013, 2013 International Symposium on Biometrics and Security Technologies.

[16]  Ashish Singh,et al.  Identity Management in Cloud Computing through Claim-Based Solution , 2015, 2015 Fifth International Conference on Advanced Computing & Communication Technologies.

[17]  Qiang Wei,et al.  RBAC-Based Access Control for SaaS Systems , 2010, 2010 2nd International Conference on Information Engineering and Computer Science.