final3 08012021-updated28082021.pdf (12.05 MB)

Attribute-Based Encryption for Access Control in Cloud Ecosystems

Download (12.05 MB)
posted on 2021-08-31, 20:38 authored by giovanni bartolomeogiovanni bartolomeo
We introduce a distributed, fine-granuled, policy-based resource access control protocol leveraging on Attribute-Based Encryption. The protocol secures the whole access control procedure from the authorization issuer to the resource server providing grant confidentiality, proof of possession, antiforgery and may be implemented through a developer familiar web token exchange flow plus a HTTP basic authentication flow. As such, it may map to Cloud computing SaaS paradigm, enabling microservices integration into a single, authorization-centric digital ecosystem, even across multiple identity domains. We also present the results of a performance evaluation on a first prototype implementation.


Email Address of Submitting Author

Submitting Author's Institution


Submitting Author's Country

  • Italy