{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,3,27]],"date-time":"2025-03-27T11:06:31Z","timestamp":1743073591470,"version":"3.40.3"},"publisher-location":"Cham","reference-count":36,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783030688509"},{"type":"electronic","value":"9783030688516"}],"license":[{"start":{"date-parts":[[2021,1,1]],"date-time":"2021-01-01T00:00:00Z","timestamp":1609459200000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"},{"start":{"date-parts":[[2021,1,1]],"date-time":"2021-01-01T00:00:00Z","timestamp":1609459200000},"content-version":"vor","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2021]]},"DOI":"10.1007\/978-3-030-68851-6_10","type":"book-chapter","created":{"date-parts":[[2021,2,4]],"date-time":"2021-02-04T07:04:02Z","timestamp":1612422242000},"page":"145-158","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["Research on Security of Access Control for Cloud Computing Environment"],"prefix":"10.1007","author":[{"given":"Zhengdong","family":"Cui","sequence":"first","affiliation":[]},{"given":"Feng","family":"Xu","sequence":"additional","affiliation":[]}],"member":"297","published-online":{"date-parts":[[2021,2,5]]},"reference":[{"key":"10_CR1","doi-asserted-by":"publisher","first-page":"200","DOI":"10.1016\/j.jnca.2016.09.002","volume":"75","author":"S Singh","year":"2016","unstructured":"Singh, S., Jeong, Y.S., Park, J.H.: A survey on cloud computing security: issues, threats, and solutions. J. Netw. Comput. Appl. 75, 200\u2013222 (2016)","journal-title":"J. Netw. Comput. Appl."},{"doi-asserted-by":"crossref","unstructured":"Basu, S., Bardhan, A., Gupta, K., et al.: Cloud computing security challenges & solutions-a survey. In: 2018 IEEE 8th Annual Computing and Communication Workshop and Conference (CCWC), pp. 347\u2013356. IEEE (2018)","key":"10_CR2","DOI":"10.1109\/CCWC.2018.8301700"},{"unstructured":"Zhang, Y., Wang, X., Liu, X., et al.: Security overview of cloud computing environment. J. Softw. (6), 1328\u20131348 (2016)","key":"10_CR3"},{"unstructured":"Curry, S., et al.: Infrastructure security: getting to the bottom of compliance in the cloud. In: The Security Division of EMC (2010)","key":"10_CR4"},{"key":"10_CR5","series-title":"Communications in Computer and Information Science","doi-asserted-by":"publisher","first-page":"103","DOI":"10.1007\/978-3-642-22577-2_14","volume-title":"High Performance Architecture and Grid Computing","author":"PJ Kaur","year":"2011","unstructured":"Kaur, P.J., Kaushal, S.: Security concerns in cloud computing. In: Mantri, A., Nandi, S., Kumar, G., Kumar, S. (eds.) HPAGC 2011. CCIS, vol. 169, pp. 103\u2013112. Springer, Heidelberg (2011). https:\/\/doi.org\/10.1007\/978-3-642-22577-2_14"},{"issue":"6","key":"10_CR6","first-page":"9","volume":"22","author":"HB Shen","year":"2005","unstructured":"Shen, H.B., Hong, F.: Review of access control model. Appl. Res. Comput. 22(6), 9\u201311 (2005)","journal-title":"Appl. Res. Comput."},{"unstructured":"Bell, D., LaPadula, L.: Secure computer systems: mathematical foundations. Bedford, MA. Accessed 04 Feb 2013","key":"10_CR7"},{"issue":"1","key":"10_CR8","doi-asserted-by":"publisher","first-page":"105","DOI":"10.1145\/300830.300839","volume":"2","author":"R Sandhu","year":"1999","unstructured":"Sandhu, R., Bhamidipati, V., Munawer, Q.: The ARBAC97 model for role-based administration of roles. ACM Trans. Inf. Syst. Secur. (TISSEC) 2(1), 105\u2013135 (1999)","journal-title":"ACM Trans. Inf. Syst. Secur. (TISSEC)"},{"issue":"2","key":"10_CR9","doi-asserted-by":"publisher","first-page":"38","DOI":"10.1109\/2.485845","volume":"29","author":"R Sandhu","year":"1996","unstructured":"Sandhu, R., Coyne, E.J., Feinstein, H.L., Youman, C.E.: Role-based access control models. IEEE Comput. 29(2), 38\u201347 (1996)","journal-title":"IEEE Comput."},{"key":"10_CR10","series-title":"Communications in Computer and Information Science","doi-asserted-by":"publisher","first-page":"11","DOI":"10.1007\/978-3-642-27189-2_2","volume-title":"Security Technology","author":"V Suhendra","year":"2011","unstructured":"Suhendra, V.: A survey on access control deployment. In: Kim, T., Adeli, H., Fang, W., Villalba, J.G., Arnett, K.P., Khan, M.K. (eds.) SecTech 2011. CCIS, vol. 259, pp. 11\u201320. Springer, Heidelberg (2011). https:\/\/doi.org\/10.1007\/978-3-642-27189-2_2"},{"unstructured":"Luo, Y., Wu, Z.H.: A new method of access control policy descriptive language and its authorization. J. Compute. 1\u201318 (2017)","key":"10_CR11"},{"unstructured":"Cantor, S., Moreh, J., Philpott, R., Maler, E.: Metadata for the OASIS Security Assertion Markup Language (SAML) V2.0. OASIS Open (2005)","key":"10_CR12"},{"unstructured":"Gary, C., Sun, M.: OASIS Service Provisioning Markup Language (SPML) Versions 2.0. OASIS Open (2006)","key":"10_CR13"},{"unstructured":"Erik, R., Axiomatics, A.B.: OASIS eXtensible Access Control Markup Language (XACML) Versions 3.0. OASIS Open (2013)","key":"10_CR14"},{"key":"10_CR15","doi-asserted-by":"publisher","first-page":"166","DOI":"10.1007\/978-0-387-35285-5_10","volume-title":"Database Security XI","author":"RK Thomas","year":"1998","unstructured":"Thomas, R.K., Sandhu, R.S.: Task-based authorization controls (TBAC): a family of models for active and enterprise-oriented authorization management. In: Lin, T.Y., Qian, S. (eds.) Database Security XI, pp. 166\u2013181. Springer, Boston (1998). https:\/\/doi.org\/10.1007\/978-0-387-35285-5_10"},{"issue":"24","key":"10_CR16","first-page":"9","volume":"38","author":"XW Wang","year":"2012","unstructured":"Wang, X.W., Zhao, Y.M.: A task-role-based access control model for cloud computing. Comput. Eng. 38(24), 9\u201313 (2012)","journal-title":"Comput. Eng."},{"issue":"12","key":"10_CR17","first-page":"3735","volume":"30","author":"Y Huang","year":"2013","unstructured":"Huang, Y., Li, K.L.: Model of cloud computing oriented T-RBAC. Appl. Res. Comput. 30(12), 3735\u20133737 (2013)","journal-title":"Appl. Res. Comput."},{"doi-asserted-by":"crossref","unstructured":"Pandey, S., Dwivedi, A., Pant, J., et al.: Security enforcement using TRBAC in cloud computing. In: 2016 International Conference on Computing, Communication and Automation (ICCCA). IEEE (2017)","key":"10_CR18","DOI":"10.1109\/CCAA.2016.7813905"},{"doi-asserted-by":"publisher","unstructured":"Al-Kahtani, M.A., Sandhu, R.: A model for attribute-based user-role assignment. In: 18th Annual Computer Security Applications Conference, 2002. Proceedings, pp. pp. 353e62. IEEE Computuer Society (2002). https:\/\/doi.org\/10.1109\/CSAC.2002.1176307.","key":"10_CR19","DOI":"10.1109\/CSAC.2002.1176307"},{"unstructured":"Karp, A., Haury, H., Davis, M.: From ABAC to ZBAC: the evolution of access control models. HP Laboratories-2009\u201330 (2009)","key":"10_CR20"},{"issue":"4","key":"10_CR21","first-page":"90","volume":"29","author":"XF Li","year":"2008","unstructured":"Li, X.F., Feng, D.G., Chen, Z.W., Fang, Z.H.: Model for attribute based access control. J. Commun. 29(4), 90\u201398 (2008)","journal-title":"J. Commun."},{"unstructured":"Al-Amri, S.: IaaS-cloud security enhancement: an intelligent attribute-based access control model and implementation. Loughborough University (2017)","key":"10_CR22"},{"key":"10_CR23","first-page":"864","volume":"1","author":"A Bouchami","year":"2015","unstructured":"Bouchami, A., Goettelmann, E., Perrin, O., Godart, C.: Enhancing access control with risk metrics for collaboration on social cloud-platforms. IEEE Trustcom\/bigdata\/SE\/ISPA 1, 864\u2013871 (2015)","journal-title":"IEEE Trustcom\/bigdata\/SE\/ISPA"},{"doi-asserted-by":"crossref","unstructured":"Ed-Daibouni, M., Lebbat, A., Tallal, S., et al.: A formal specification approach of Privacy-aware Attribute Based Access Control (Pa-ABAC) model for cloud computing. In: International Conference on Systems of Collaboration. IEEE (2016)","key":"10_CR24","DOI":"10.1109\/SYSCO.2016.7831324"},{"key":"10_CR25","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"457","DOI":"10.1007\/11426639_27","volume-title":"Advances in Cryptology \u2013 EUROCRYPT 2005","author":"A Sahai","year":"2005","unstructured":"Sahai, A., Waters, B.: Fuzzy identity-based encryption. In: Cramer, R. (ed.) Advances in Cryptology \u2013 EUROCRYPT 2005. Lecture Notes in Computer Science, vol. 3494, pp. 457\u2013473. Springer, Heidelberg (2005)"},{"unstructured":"Vipul, G., Amit, S., Omkant, P., Brent, W.: Attribute-Based encryption for fine-grained access control of encrypted data. In: Proceedings of the ACM Conference on Computer and Communications Security, pp. 89\u221298 (2006)","key":"10_CR26"},{"issue":"1","key":"10_CR27","first-page":"1","volume":"22","author":"H Zhong","year":"2016","unstructured":"Zhong, H., Zhu, W., Yan, X.: Multi-authority attribute-based encryption access control scheme with policy hidden for cloud storage. Soft. Comput. 22(1), 1\u20139 (2016)","journal-title":"Soft. Comput."},{"issue":"1","key":"10_CR28","doi-asserted-by":"publisher","first-page":"94","DOI":"10.1109\/TIFS.2017.2738601","volume":"13","author":"J Ning","year":"2018","unstructured":"Ning, J., Cao, Z., Dong, X., Liang, K., Ma, H., Wei, L.: Auditable $\\sigma $ -time outsourced attribute-based encryption for access control in cloud computing. IEEE Trans. Inf. Forensics Secur. 13(1), 94\u2013105 (2018). https:\/\/doi.org\/10.1109\/TIFS.2017.2738601","journal-title":"IEEE Trans. Inf. Forensics Secur."},{"key":"10_CR29","doi-asserted-by":"publisher","first-page":"953","DOI":"10.1109\/TIFS.2016.2647222","volume":"12","author":"K Xue","year":"2017","unstructured":"Xue, K., Xue, Y., Hong, J., et al.: RAAC: robust and auditable access control with multiple attribute authorities for public cloud storage. IEEE Trans. Inf. Forensics Secur. 12, 953\u2013967 (2017)","journal-title":"IEEE Trans. Inf. Forensics Secur."},{"issue":"1","key":"10_CR30","doi-asserted-by":"publisher","first-page":"61","DOI":"10.1109\/CC.2017.7839758","volume":"14","author":"K Fan","year":"2017","unstructured":"Fan, K., Tian, Q., Wang, J., Li, H., Yang, Y.: Privacy protection based access control scheme in cloud-based services. China Commun. 14(1), 61\u201371 (2017). https:\/\/doi.org\/10.1109\/CC.2017.7839758","journal-title":"China Commun."},{"key":"10_CR31","doi-asserted-by":"publisher","first-page":"394","DOI":"10.1007\/978-981-13-1648-7_34","volume-title":"Computational Intelligence and Intelligent Systems, ISICA 2017, Communications in Computer and Information Science","author":"J Nie","year":"2018","unstructured":"Nie, J., Zhang, D.: Research on resource trust access control based on cloud computing environment. In: Li, K., Li, W., Chen, Z., Liu, Y. (eds.) Computational Intelligence and Intelligent Systems, ISICA 2017, Communications in Computer and Information Science, vol. 873, pp. 394\u2013404. Springer, Heidelberg (2018). https:\/\/doi.org\/10.1007\/978-981-13-1648-7_34"},{"doi-asserted-by":"crossref","unstructured":"Burnett, C., Chen, L., Edwards, P., Norman, T.J.: TRAAC: trust and risk aware access control. In: 2014 12th Annual International Conference on Privacy, Security and Trust (PST), pp. 371\u2013378., IEEE (2014)","key":"10_CR32","DOI":"10.1109\/PST.2014.6890962"},{"doi-asserted-by":"crossref","unstructured":"Chen, A., Xing, H., She, K., et al.: A dynamic risk-based access control model for cloud computing. In: IEEE International Conferences on Big Data & Cloud Computing. IEEE (2016)","key":"10_CR33","DOI":"10.1109\/BDCloud-SocialCom-SustainCom.2016.90"},{"issue":"1","key":"10_CR34","first-page":"45","volume":"19","author":"YA Younis","year":"2014","unstructured":"Younis, Y.A., Kifayat, K., Merabti, M.: An access control model for cloud computing. J. Inf. Secur. Appl. 19(1), 45\u201360 (2014)","journal-title":"J. Inf. Secur. Appl."},{"issue":"4","key":"10_CR35","doi-asserted-by":"publisher","first-page":"154","DOI":"10.1109\/CC.2014.6827577","volume":"11","author":"G Lin","year":"2014","unstructured":"Lin, G., Wang, D., Bie, Y., et al.: MTBAC: a mutual trust based access control model in cloud computing. China Commun. 11(4), 154\u2013162 (2014)","journal-title":"China Commun."},{"issue":"5","key":"10_CR36","first-page":"1129","volume":"26","author":"YD Wang","year":"2015","unstructured":"Wang, Y.D., Yang, J.H., Xu, C., et al.: Survey on access control technologies for cloud computing. J. Softw. 26(5), 1129\u20131150 (2015)","journal-title":"J. Softw."}],"container-title":["Lecture Notes in Computer Science","Security, Privacy, and Anonymity in Computation, Communication, and Storage"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-030-68851-6_10","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2021,2,4]],"date-time":"2021-02-04T07:13:49Z","timestamp":1612422829000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-030-68851-6_10"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2021]]},"ISBN":["9783030688509","9783030688516"],"references-count":36,"URL":"https:\/\/doi.org\/10.1007\/978-3-030-68851-6_10","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2021]]},"assertion":[{"value":"5 February 2021","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"SpaCCS","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Security, Privacy and Anonymity in Computation, Communication and Storage","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Nanjing","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"China","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2020","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"18 December 2020","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"20 December 2020","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"13","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"spaccs2020","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"http:\/\/www.spaccs2020.com\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Double-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"EasyChair","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"131","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"48","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"0","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"37% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"3","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"4","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"Yes","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}}]}}