A novel role-mapping algorithm for enhancing highly collaborative access control system
The collaboration among different organizations is considered one of the main benefits of moving applications and services to a cloud computing environment. Unfortunately, this collaboration raises many challenges such as the access of sensitive resources by unauthorized people. Usually, Role-Based...
Gespeichert in:
| Veröffentlicht in: | Distributed and parallel databases : an international journal 2022-09, Vol.40 (2-3), p.521-558 |
|---|---|
| Hauptverfasser: | , , |
| Format: | Artikel |
| Sprache: | eng |
| Schlagworte: | |
| Online-Zugang: | Volltext |
| Tags: |
Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
|
| container_end_page | 558 |
|---|---|
| container_issue | 2-3 |
| container_start_page | 521 |
| container_title | Distributed and parallel databases : an international journal |
| container_volume | 40 |
| creator | Abdelfattah, Doaa Hassan, Hesham A. Omara, Fatma A. |
| description | The collaboration among different organizations is considered one of the main benefits of moving applications and services to a cloud computing environment. Unfortunately, this collaboration raises many challenges such as the access of sensitive resources by unauthorized people. Usually, Role-Based Access-Control (RBAC) model is deployed in large organizations. This paper addresses the scalability problem of the online stored rules. This problem affects the performance of the access control system due to increasing number of shared resources and/or number of collaborating organizations in the same cloud environment. Therefore, this paper proposes replacing the cross-domain RBAC rules with Role-To-Role (RTR) mapping rules among all organizations. The RTR mapping rules are generated using a newly proposed Role-Mapping algorithm. A comparative study is performed to evaluate the proposed algorithm’s performance with concerning the Rule-Store size and the authorization response time. According to the results, it is found that the proposed algorithm reduces the number of stored rules which minimizes the Rule-Store size and reduces the authorization response time. Additionally, this paper proposes applying a concurrent approach on the RTR mapping model using the proposed Role-Mapping algorithm to achieve more savings in the authorization response time. Therefore, it will be suitable in highly-collaborative cloud environments. |
| doi_str_mv | 10.1007/s10619-022-07407-9 |
| format | Article |
| fullrecord | <record><control><sourceid>proquest_cross</sourceid><recordid>TN_cdi_proquest_journals_2711891104</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>2711891104</sourcerecordid><originalsourceid>FETCH-LOGICAL-c363t-f24a4c09c3f0a0ef39ab6fee941103070d7d7f85b35f198035395338c7780b7f3</originalsourceid><addsrcrecordid>eNp9kE1LxDAURYMoOI7-AVcB19GXpm2S5TD4BQNuFJchzSRth7apSWdg_r0ZK7hz9eBy73lwELqlcE8B-EOkUFJJIMsI8Bw4kWdoQQvOCC-4OEcLkFlJBBfZJbqKcQcAklO-QJ8rPPiD7XDwnSW9Hsd2qLHuah_aqemx8wHbodGDOeVNWzfdERvfdbryQU_twWJtjI0xhcOUIDge42T7a3ThdBftze9doo-nx_f1C9m8Pb-uVxtiWMkm4rJc5wakYQ40WMekrkpnrcwpBQYctnzLnSgqVjgqBbCCyYIxYTgXUHHHluhu5o7Bf-1tnNTO78OQXqqMUypk4uSplc0tE3yMwTo1hrbX4agoqJNANQtUSaD6EahkGrF5FFN5qG34Q_-z-gZBeXO2</addsrcrecordid><sourcetype>Aggregation Database</sourcetype><iscdi>true</iscdi><recordtype>article</recordtype><pqid>2711891104</pqid></control><display><type>article</type><title>A novel role-mapping algorithm for enhancing highly collaborative access control system</title><source>Springer Nature - Complete Springer Journals</source><creator>Abdelfattah, Doaa ; Hassan, Hesham A. ; Omara, Fatma A.</creator><creatorcontrib>Abdelfattah, Doaa ; Hassan, Hesham A. ; Omara, Fatma A.</creatorcontrib><description>The collaboration among different organizations is considered one of the main benefits of moving applications and services to a cloud computing environment. Unfortunately, this collaboration raises many challenges such as the access of sensitive resources by unauthorized people. Usually, Role-Based Access-Control (RBAC) model is deployed in large organizations. This paper addresses the scalability problem of the online stored rules. This problem affects the performance of the access control system due to increasing number of shared resources and/or number of collaborating organizations in the same cloud environment. Therefore, this paper proposes replacing the cross-domain RBAC rules with Role-To-Role (RTR) mapping rules among all organizations. The RTR mapping rules are generated using a newly proposed Role-Mapping algorithm. A comparative study is performed to evaluate the proposed algorithm’s performance with concerning the Rule-Store size and the authorization response time. According to the results, it is found that the proposed algorithm reduces the number of stored rules which minimizes the Rule-Store size and reduces the authorization response time. Additionally, this paper proposes applying a concurrent approach on the RTR mapping model using the proposed Role-Mapping algorithm to achieve more savings in the authorization response time. Therefore, it will be suitable in highly-collaborative cloud environments.</description><identifier>ISSN: 0926-8782</identifier><identifier>EISSN: 1573-7578</identifier><identifier>DOI: 10.1007/s10619-022-07407-9</identifier><language>eng</language><publisher>New York: Springer US</publisher><subject>Access control ; Algorithms ; Cloud computing ; Collaboration ; Comparative studies ; Computer Science ; Control systems ; Data Structures ; Database Management ; Information Systems Applications (incl.Internet) ; Mapping ; Memory Structures ; Operating Systems ; Organizations ; Response time ; Response time (computers)</subject><ispartof>Distributed and parallel databases : an international journal, 2022-09, Vol.40 (2-3), p.521-558</ispartof><rights>The Author(s) 2022</rights><rights>The Author(s) 2022. This work is published under http://creativecommons.org/licenses/by/4.0/ (the “License”). Notwithstanding the ProQuest Terms and Conditions, you may use this content in accordance with the terms of the License.</rights><lds50>peer_reviewed</lds50><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed><citedby>FETCH-LOGICAL-c363t-f24a4c09c3f0a0ef39ab6fee941103070d7d7f85b35f198035395338c7780b7f3</citedby><cites>FETCH-LOGICAL-c363t-f24a4c09c3f0a0ef39ab6fee941103070d7d7f85b35f198035395338c7780b7f3</cites></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktopdf>$$Uhttps://link.springer.com/content/pdf/10.1007/s10619-022-07407-9$$EPDF$$P50$$Gspringer$$Hfree_for_read</linktopdf><linktohtml>$$Uhttps://link.springer.com/10.1007/s10619-022-07407-9$$EHTML$$P50$$Gspringer$$Hfree_for_read</linktohtml><link.rule.ids>314,776,780,27903,27904,41467,42536,51297</link.rule.ids></links><search><creatorcontrib>Abdelfattah, Doaa</creatorcontrib><creatorcontrib>Hassan, Hesham A.</creatorcontrib><creatorcontrib>Omara, Fatma A.</creatorcontrib><title>A novel role-mapping algorithm for enhancing highly collaborative access control system</title><title>Distributed and parallel databases : an international journal</title><addtitle>Distrib Parallel Databases</addtitle><description>The collaboration among different organizations is considered one of the main benefits of moving applications and services to a cloud computing environment. Unfortunately, this collaboration raises many challenges such as the access of sensitive resources by unauthorized people. Usually, Role-Based Access-Control (RBAC) model is deployed in large organizations. This paper addresses the scalability problem of the online stored rules. This problem affects the performance of the access control system due to increasing number of shared resources and/or number of collaborating organizations in the same cloud environment. Therefore, this paper proposes replacing the cross-domain RBAC rules with Role-To-Role (RTR) mapping rules among all organizations. The RTR mapping rules are generated using a newly proposed Role-Mapping algorithm. A comparative study is performed to evaluate the proposed algorithm’s performance with concerning the Rule-Store size and the authorization response time. According to the results, it is found that the proposed algorithm reduces the number of stored rules which minimizes the Rule-Store size and reduces the authorization response time. Additionally, this paper proposes applying a concurrent approach on the RTR mapping model using the proposed Role-Mapping algorithm to achieve more savings in the authorization response time. Therefore, it will be suitable in highly-collaborative cloud environments.</description><subject>Access control</subject><subject>Algorithms</subject><subject>Cloud computing</subject><subject>Collaboration</subject><subject>Comparative studies</subject><subject>Computer Science</subject><subject>Control systems</subject><subject>Data Structures</subject><subject>Database Management</subject><subject>Information Systems Applications (incl.Internet)</subject><subject>Mapping</subject><subject>Memory Structures</subject><subject>Operating Systems</subject><subject>Organizations</subject><subject>Response time</subject><subject>Response time (computers)</subject><issn>0926-8782</issn><issn>1573-7578</issn><fulltext>true</fulltext><rsrctype>article</rsrctype><creationdate>2022</creationdate><recordtype>article</recordtype><sourceid>C6C</sourceid><recordid>eNp9kE1LxDAURYMoOI7-AVcB19GXpm2S5TD4BQNuFJchzSRth7apSWdg_r0ZK7hz9eBy73lwELqlcE8B-EOkUFJJIMsI8Bw4kWdoQQvOCC-4OEcLkFlJBBfZJbqKcQcAklO-QJ8rPPiD7XDwnSW9Hsd2qLHuah_aqemx8wHbodGDOeVNWzfdERvfdbryQU_twWJtjI0xhcOUIDge42T7a3ThdBftze9doo-nx_f1C9m8Pb-uVxtiWMkm4rJc5wakYQ40WMekrkpnrcwpBQYctnzLnSgqVjgqBbCCyYIxYTgXUHHHluhu5o7Bf-1tnNTO78OQXqqMUypk4uSplc0tE3yMwTo1hrbX4agoqJNANQtUSaD6EahkGrF5FFN5qG34Q_-z-gZBeXO2</recordid><startdate>20220901</startdate><enddate>20220901</enddate><creator>Abdelfattah, Doaa</creator><creator>Hassan, Hesham A.</creator><creator>Omara, Fatma A.</creator><general>Springer US</general><general>Springer Nature B.V</general><scope>C6C</scope><scope>AAYXX</scope><scope>CITATION</scope></search><sort><creationdate>20220901</creationdate><title>A novel role-mapping algorithm for enhancing highly collaborative access control system</title><author>Abdelfattah, Doaa ; Hassan, Hesham A. ; Omara, Fatma A.</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-c363t-f24a4c09c3f0a0ef39ab6fee941103070d7d7f85b35f198035395338c7780b7f3</frbrgroupid><rsrctype>articles</rsrctype><prefilter>articles</prefilter><language>eng</language><creationdate>2022</creationdate><topic>Access control</topic><topic>Algorithms</topic><topic>Cloud computing</topic><topic>Collaboration</topic><topic>Comparative studies</topic><topic>Computer Science</topic><topic>Control systems</topic><topic>Data Structures</topic><topic>Database Management</topic><topic>Information Systems Applications (incl.Internet)</topic><topic>Mapping</topic><topic>Memory Structures</topic><topic>Operating Systems</topic><topic>Organizations</topic><topic>Response time</topic><topic>Response time (computers)</topic><toplevel>peer_reviewed</toplevel><toplevel>online_resources</toplevel><creatorcontrib>Abdelfattah, Doaa</creatorcontrib><creatorcontrib>Hassan, Hesham A.</creatorcontrib><creatorcontrib>Omara, Fatma A.</creatorcontrib><collection>Springer Nature OA Free Journals</collection><collection>CrossRef</collection><jtitle>Distributed and parallel databases : an international journal</jtitle></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext</fulltext></delivery><addata><au>Abdelfattah, Doaa</au><au>Hassan, Hesham A.</au><au>Omara, Fatma A.</au><format>journal</format><genre>article</genre><ristype>JOUR</ristype><atitle>A novel role-mapping algorithm for enhancing highly collaborative access control system</atitle><jtitle>Distributed and parallel databases : an international journal</jtitle><stitle>Distrib Parallel Databases</stitle><date>2022-09-01</date><risdate>2022</risdate><volume>40</volume><issue>2-3</issue><spage>521</spage><epage>558</epage><pages>521-558</pages><issn>0926-8782</issn><eissn>1573-7578</eissn><abstract>The collaboration among different organizations is considered one of the main benefits of moving applications and services to a cloud computing environment. Unfortunately, this collaboration raises many challenges such as the access of sensitive resources by unauthorized people. Usually, Role-Based Access-Control (RBAC) model is deployed in large organizations. This paper addresses the scalability problem of the online stored rules. This problem affects the performance of the access control system due to increasing number of shared resources and/or number of collaborating organizations in the same cloud environment. Therefore, this paper proposes replacing the cross-domain RBAC rules with Role-To-Role (RTR) mapping rules among all organizations. The RTR mapping rules are generated using a newly proposed Role-Mapping algorithm. A comparative study is performed to evaluate the proposed algorithm’s performance with concerning the Rule-Store size and the authorization response time. According to the results, it is found that the proposed algorithm reduces the number of stored rules which minimizes the Rule-Store size and reduces the authorization response time. Additionally, this paper proposes applying a concurrent approach on the RTR mapping model using the proposed Role-Mapping algorithm to achieve more savings in the authorization response time. Therefore, it will be suitable in highly-collaborative cloud environments.</abstract><cop>New York</cop><pub>Springer US</pub><doi>10.1007/s10619-022-07407-9</doi><tpages>38</tpages><oa>free_for_read</oa></addata></record> |
| fulltext | fulltext |
| identifier | ISSN: 0926-8782 |
| ispartof | Distributed and parallel databases : an international journal, 2022-09, Vol.40 (2-3), p.521-558 |
| issn | 0926-8782 1573-7578 |
| language | eng |
| recordid | cdi_proquest_journals_2711891104 |
| source | Springer Nature - Complete Springer Journals |
| subjects | Access control Algorithms Cloud computing Collaboration Comparative studies Computer Science Control systems Data Structures Database Management Information Systems Applications (incl.Internet) Mapping Memory Structures Operating Systems Organizations Response time Response time (computers) |
| title | A novel role-mapping algorithm for enhancing highly collaborative access control system |
| url | https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-26T21%3A30%3A06IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-proquest_cross&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.genre=article&rft.atitle=A%20novel%20role-mapping%20algorithm%20for%20enhancing%20highly%20collaborative%20access%20control%20system&rft.jtitle=Distributed%20and%20parallel%20databases%20:%20an%20international%20journal&rft.au=Abdelfattah,%20Doaa&rft.date=2022-09-01&rft.volume=40&rft.issue=2-3&rft.spage=521&rft.epage=558&rft.pages=521-558&rft.issn=0926-8782&rft.eissn=1573-7578&rft_id=info:doi/10.1007/s10619-022-07407-9&rft_dat=%3Cproquest_cross%3E2711891104%3C/proquest_cross%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_pqid=2711891104&rft_id=info:pmid/&rfr_iscdi=true |