Fine-Grained Two-Factor Access Control for Web-Based Cloud Computing Services

   December 8, 2017    Comments Off on Fine-Grained Two-Factor Access Control for Web-Based Cloud Computing Services    Posted in: .Net, IEEE 2017

Fine-Grained Two-Factor Access Control for Web-Based Cloud Computing Services

Abstract

 In this paper, we introduce a new fine-grainedtwo-factor authentication (2FA) access control system forweb-based cloud computing services. Specifically, in our proposed 2FA access control system, an attribute-based access controlmechanism is implemented with the necessity of both a user secret key and a lightweight security device. As a user cannotaccess the system if they do not hold both, the mechanism canenhance the security of the system, especially in those scenarioswhere many users share the same computer for web-based cloudservices. In addition, attribute-based control in the system alsoenables the cloud server to restrict the access to those userswith the same set of attributes while preserving user privacy,i.e., the cloud server only knows that the user fulfills the requiredpredicate, but has no idea on the exact identity of the user. Finally,we also carry out a simulation to demonstrate the practicabilityof our proposed 2FA system.

  

Comments are closed.