Context-aware Policy Enforcement for PaaS-enabled Access Control

dc.contributor.author Verginadis, Yannis
dc.contributor.author Pationiotakis, Ioannis
dc.contributor.author Gouvas, Panagiotis
dc.contributor.author Mantzouratos, Spyros
dc.contributor.author Schork, Sebastian Thomas
dc.contributor.author Veloudis, Simeon
dc.contributor.author Seitz, Ludwig
dc.contributor.author Paraskakis, Iraklis
dc.contributor.author Mentzas, Grigoris
dc.date.accessioned 2022-08-26T07:06:42Z
dc.date.available 2022-08-26T07:06:42Z
dc.date.issued 2019-07-09
dc.description.abstract It is generally conceded that, due to security and privacy concerns, enterprises and users are reluctant to embrace the cloud computing paradigm and hence benefit from the cost reductions and the increased flexibility or business agility that this paradigm brings about. These concerns stem mainly from the significantly-expanded attack surfaces that result from the heterogeneous nature of cloud services and the dynamicity inherent in cloud environments. In order to alleviate these concerns, effective and flexible access control approaches are required to consider the contextual parameters that characterise data access requests in the cloud. In this respect, this work presents PaaSword: a novel holistic access control framework—essentially a PaaS offering—that extends the popular XACML standard with semantic reasoning capabilities that support the federation of effective context-aware access control policies and their infusion into cloud applications with minimal manual intervention and effort. To determine the performance of our solution, a comparative evaluation test is presented and discussed, against a well-known reference implementation of the XACML standard, namely the open source WSO2 Balana engine.
dc.description.sponsorship Horizon 2020, GA No: 644814
dc.identifier.citation Y. Verginadis et al., "Context-Aware Policy Enforcement for PaaS-Enabled Access Control," in IEEE Transactions on Cloud Computing, vol. 10, no. 1, pp. 276-291, 1 Jan.-March 2022, doi: 10.1109/TCC.2019.2927341.
dc.identifier.other 10.1109/TCC.2019.2927341
dc.identifier.uri https://ccdspace.eu/handle/123456789/79
dc.language.iso en
dc.publisher IEEE
dc.title Context-aware Policy Enforcement for PaaS-enabled Access Control
dc.type Article
dspace.entity.type
Files
Original bundle
Now showing 1 - 1 of 1
No Thumbnail Available
Name:
IEEE_Trans_CC_Revision_.pdf
Size:
1.29 MB
Format:
Adobe Portable Document Format
Description:
License bundle
Now showing 1 - 1 of 1
No Thumbnail Available
Name:
license.txt
Size:
1.71 KB
Format:
Item-specific license agreed to upon submission
Description: