Deanship of Graduate Studies | Researches | SECURING ACCESS CONTROL POLICIES FOR BIG DATA ON CLOUD STORAGE

Main Page
Deanship
- The Dean
  - Dean's Word
  - Curriculum Vitae
  - Contact the Dean
- Vision and Mission
- Organizational Structure
- Vice- Deanship
- Vice- Dean
- KAU Graduate Studies
Research Services & Courses
- Research Services Unit
- Important Research for Society
- Deanship's Services
  - FAQs
  - Research
  - Staff Directory
  - Files
  - Favorite Websites
  - Deanship Access Map
Graduate Studies Awards
Deanship's Staff
- Staff Directory
Files
Researches
Contact us

- عربي
- English

Deanship of Graduate Studies

Document Details

Document Type	:	Thesis
Document Title	:	SECURING ACCESS CONTROL POLICIES FOR BIG DATA ON CLOUD STORAGE هيكل وصول دقيق و آمن للبيانات الضخمة في بيئات التخزين السحابية
Subject	:	Faculty of Computing and Information Technology
Document Language	:	Arabic
Abstract	:	Many companies and enterprises benefit from cloud storage services to build big data analysis platforms where Access Control Policies (ACPs) are used to restrict access to client’s big data and analysis results stored on the cloud storages. Intuitively, any attack succeed in changing an ACP will inevitably lead to unauthorized access to the clients’ big data and analysis results which could be of great value. In this thesis, we propose lightweight, efficient yet simple security modal depends on digital signature as a protection mechanism to secure ACPs of the format JSON used by Amazon Web Services (AWS) which is, according to statistics, the most popular cloud provider. Adding digital signature to each single JSON policy will prevent any illegitimate party, including the storage service provider, from illegally changing the client’s ACPs or creating new policies without the client’s knowledge; also it will ensure the integrity and authenticity of the ACPs applied by the client. We implemented prototype of our proposed security model using .NET Framework and tested it using sample consists of group of AWS policies. Results showed that the consumed time to create and verify digital signatures does not exceed few parts of a second, also the proposed security model does not require any additional hardware to be adopted by cloud storage providers as it depends entirely on adding programmatic functions to create and verify digital signatures. The proposed security model provides security for ACPs for minimum operational cost, effort and execution time.
Supervisor	:	Prof. Fathy Essa
Thesis Type	:	Master Thesis
Publishing Year	:	1438 AH 2016 AD
Added Date	:	Thursday, December 22, 2016

Researchers

Researcher Name (Arabic)	Researcher Name (English)	Researcher Type	Dr Grade	Email
ندى معلث السحيمي	Alsehaimi, Nada Meleth	Researcher	Master

Files

File Name	Type	Description
39534.pdf	pdf

Back To Researches Page