论文信息 - G-Cloud on Openstack: Adressing access control and regulation requirements

G-Cloud on Openstack: Adressing access control and regulation requirements

It is well known that e-Government applications bring several benefits to citizens in terms of efficiency, accessibility and transparency. Today, most of governments tend to propose cloud computing based e-services to their citizens. A key component in these services is the access control management issue. In this paper, we present our research works for building an access control system for the Djiboutian e-Government project that is built using Openstack framework. Specifically, we demonstrate the limitation of the integrated access control system in Openstack for the Djiboutian e-Government access control requirements and for the compliance to the related regulation. Thus, we propose to extend the existing access control system of Openstack by integrating the features of the XACML V3 to the Openstack framework.

Romain Laborde | Abdelmalek Benzekri | François Barrère | Ahmad Samer Wazan | Ibrahim Yonis Omar

[1] Bernd Zwattendorfer,et al. Cloud Computing in E-Government across Europe - A Comparison , 2013, EGOVIS/EDEM.

[2] Romain Laborde,et al. Specification and Enforcement of Dynamic Authorization Policies Oriented by Situations , 2014, 2014 6th International Conference on New Technologies, Mobility and Security (NTMS).

[3] Ravi S. Sandhu,et al. Extending OpenStack Access Control with Domain Trust , 2014, NSS.

[4] Wojciech Cellary,et al. e-government based on cloud computing and service-oriented architecture , 2009, ICEGOV '09.

[5] Romain Laborde,et al. A secure collaborative web-based environment for virtual organisations , 2009, Int. J. Web Based Communities.

[6] Tong Xu,et al. Research on G2G E-Government Information Sharing Cloud , 2012 .

[7] Mohammad Masdari,et al. Using Cloud Computing for E-Government: Challenges and Benefits , 2013 .

[8] Romain Laborde,et al. An Adaptive XACMLv3 Policy Enforcement Point , 2014, 2014 IEEE 38th International Computer Software and Applications Conference Workshops.

[9] Jungwoo Lee,et al. Developing fully functional E-government: A four stage model , 2001, Gov. Inf. Q..

[10] Bassem Nasser,et al. Access Control Model for Inter-organizational Grid Virtual Organizations , 2005, OTM Workshops.