Home > Research > Publications & Outputs > General Access Control Guidance for Cloud Systems
View graph of relations

General Access Control Guidance for Cloud Systems: SP 800-210(Draft)

Research output: Other contribution

E-pub ahead of print

Standard

General Access Control Guidance for Cloud Systems: SP 800-210(Draft) . / Hu, Vincent C.; Iorga, Michaela; Bao, Wei et al.
Computer Security Resource Center. 2020.

Research output: Other contribution

Harvard

APA

Hu, V. C., Iorga, M., Bao, W., Li, A., Li, Q., & Gouglidis, A. (2020, Apr 1). General Access Control Guidance for Cloud Systems: SP 800-210(Draft) . Computer Security Resource Center. Advance online publication. https://csrc.nist.gov/publications/detail/sp/800-210/draft

Vancouver

Hu VC, Iorga M, Bao W, Li A, Li Q, Gouglidis A. General Access Control Guidance for Cloud Systems: SP 800-210(Draft) . 2020. Epub 2020 Apr 1.

Author

Hu, Vincent C. ; Iorga, Michaela ; Bao, Wei et al. / General Access Control Guidance for Cloud Systems : SP 800-210(Draft) . 2020. Computer Security Resource Center.

Bibtex

@misc{286cc15dc573427bb3b865831e398af2,
title = "General Access Control Guidance for Cloud Systems: SP 800-210(Draft) ",
abstract = "This document presents cloud access control characteristics and a set of general access control guidance for cloud service models: IaaS (Infrastructure as a Service), PaaS (Platform as a Service), and SaaS (Software as a Service). Different service delivery models require managing different types of access on offered service components. Such service models can be considered hierarchical, thus the access control guidance of functional components in a lower-level service model are also applicable to the same functional components in a higher-level service model. In general, access control guidance for IaaS is also applicable to PaaS and SaaS, and access control guidance for IaaS and PaaS is also applicable to SaaS. However, each service model has its own focus with regard to access control requirements for its service.",
author = "Hu, {Vincent C.} and Michaela Iorga and Wei Bao and Ang Li and Qinghua Li and Antonios Gouglidis",
year = "2020",
month = apr,
day = "1",
language = "English",
publisher = "Computer Security Resource Center",
type = "Other",

}

RIS

TY - GEN

T1 - General Access Control Guidance for Cloud Systems

T2 - SP 800-210(Draft)

AU - Hu, Vincent C.

AU - Iorga, Michaela

AU - Bao, Wei

AU - Li, Ang

AU - Li, Qinghua

AU - Gouglidis, Antonios

PY - 2020/4/1

Y1 - 2020/4/1

N2 - This document presents cloud access control characteristics and a set of general access control guidance for cloud service models: IaaS (Infrastructure as a Service), PaaS (Platform as a Service), and SaaS (Software as a Service). Different service delivery models require managing different types of access on offered service components. Such service models can be considered hierarchical, thus the access control guidance of functional components in a lower-level service model are also applicable to the same functional components in a higher-level service model. In general, access control guidance for IaaS is also applicable to PaaS and SaaS, and access control guidance for IaaS and PaaS is also applicable to SaaS. However, each service model has its own focus with regard to access control requirements for its service.

AB - This document presents cloud access control characteristics and a set of general access control guidance for cloud service models: IaaS (Infrastructure as a Service), PaaS (Platform as a Service), and SaaS (Software as a Service). Different service delivery models require managing different types of access on offered service components. Such service models can be considered hierarchical, thus the access control guidance of functional components in a lower-level service model are also applicable to the same functional components in a higher-level service model. In general, access control guidance for IaaS is also applicable to PaaS and SaaS, and access control guidance for IaaS and PaaS is also applicable to SaaS. However, each service model has its own focus with regard to access control requirements for its service.

M3 - Other contribution

PB - Computer Security Resource Center

ER -