An authorization model for query execution in the cloud

被引：1

作者：

di Vimercati, Sabrina De Capitani ^{[1
]}

Foresti, Sara ^{[1
]}

Jajodia, Sushil ^{[2
]}

Livraga, Giovanni ^{[1
]}

Paraboschi, Stefano ^{[3
]}

Samarati, Pierangela ^{[1
]}

机构：

[1] Univ Milan, Milan, Italy

[2] George Mason Univ, Fairfax, VA 22030 USA

[3] Univ Bergamo, Bergamo, Italy

来源：

VLDB JOURNAL | 2022年 / 31卷 / 03期

基金：

欧盟地平线“2020”; 美国国家科学基金会;

关键词：

Authorization model; Collaborative query evaluation; Plaintext and encrypted visibility; Implicit attributes; Equivalent attributes; Relation profile;

D O I：

10.1007/s00778-021-00709-x

中图分类号：

TP3 [计算技术、计算机技术];

学科分类号：

0812 ;

摘要：

We present a novel approach for the specification and enforcement of authorizations that enables controlled data sharing for collaborative queries in the cloud. Data authorities can establish authorizations regulating access to their data distinguishing three visibility levels (no visibility, encrypted visibility, and plaintext visibility). Authorizations are enforced accounting for the information content carried in the computation to ensure no information is improperly leaked and adjusting visibility of data on-the-fly. Assignment of operations to subjects takes into consideration the cost of operation execution as well as of the encryption/decryption operations needed to make the assignment authorized. Our approach enables users and data authorities to fully enjoy the benefits and economic savings of the competitive open cloud market, while maintaining control over data.

引用

页码：555 / 579

页数：25

共 50 条

[41] Efficient execution of the WRF model and other HPC applications in the cloud
Hector A. Duran-Limon
Jesus Flores-Contreras
Nikos Parlavantzas
Ming Zhao
Angel Meulenert-Peña
Earth Science Informatics, 2016, 9 : 365 - 382
[42] Domain Model Optimized Deployment and Execution of Cloud Applications with TOSCA
Glaser, Fabian
SYSTEM ANALYSIS AND MODELING: TECHNOLOGY-SPECIFIC ASPECTS OF MODELS, 2016, 9959 : 68 - 83
[43] Dynamic Execution Offloading Model For Efficient Mobile Cloud Computing
Jiang, Yong
He, Juhua
Li, Qing
Xiao, Xi
2014 IEEE GLOBAL COMMUNICATIONS CONFERENCE (GLOBECOM 2014), 2014, : 2302 - 2307
[44] Optimized Execution of a Numerical Weather Forecast Model in a Cloud Cluster
de Melo, Mateus S.
Souto, Roberto Pinto
Drummond, Lucia M. A.
CONCURRENCY AND COMPUTATION-PRACTICE & EXPERIENCE, 2025, 37 (03):
[45] Efficient execution of the WRF model and other HPC applications in the cloud
Duran-Limon, Hector A.
Flores-Contreras, Jesus
Parlavantzas, Nikos
Zhao, Ming
Meulenert-Pena, Angel
EARTH SCIENCE INFORMATICS, 2016, 9 (03) : 365 - 382
[46] Scientific workflow execution in the cloud using a dynamic runtime model
Johannes Erbel
Jens Grabowski
Software and Systems Modeling, 2024, 23 : 163 - 193
[47] AQUA: An Efficient Solver for the User Authorization Query Problem
Armando, Alessandro
Gazzarata, Giorgia A.
Turkmen, Fatih
SACMAT'20: PROCEEDINGS OF THE 25TH ACM SYMPOSIUM ON ACCESS CONTROL MODELS AND TECHNOLOGIES, 2020, : 153 - 154
[48] Stateful Least Privilege Authorization for the Cloud
Cao, Leo
Meng, Luoxi
Stefan, Deian
Fernandes, Earlence
PROCEEDINGS OF THE 33RD USENIX SECURITY SYMPOSIUM, SECURITY 2024, 2024, : 3477 - 3494
[49] Cloaking data to ease view creation, query expression, and query execution
Murthy, S. (sudarshan.murthy@elseinstitute.org), 1600, Springer Verlag (7260 LNCS):
[50] Service-oriented execution model supporting data sharing and adaptive query processing
Yongwei Wu
Jia Liu
Gang Chen
Qiming Fang
Guangwen Yang
Cluster Computing, 2010, 13 : 127 - 140

← 1 2 3 4 5 →