Science & Engineering Research Support soCiety (SERSC)
With the development of cloud computing and as the basis of data services, security problems of cloud storage are growing more attention. Based on distributed storage, multi-domain and multi-tenant characteristics, combined with access control technologies, this paper sets up the Role-Based Access Control using ontology and DOmian in cloud storage (DOnto-RBAC), which could provide a concise and effective strategy for service providers (isps). According to the characteristics of access control in cloud storage, based on the standards (called CDMI), this paper adds domains and time constraints of roles into RBAC. With ontology technologies and the OWL language, this paper establishes ontology model including entities' descriptions and strategies to realize reasoning of multi-domain access control permissions.