Welcome to the ADMT Publication Server

Enforcing Policy and Data Consistency of Cloud Transactions

DocUID: 2011-011 Full Text: PDF

Author: Marian K. Iskander, Dave W. Wilkinson, Adam J. Lee, Panos K. Chrysanthis

Abstract: In distributed transactional database systems deployed over cloud servers, entities cooperate to form proofs of authorizations that are justified by collections of certified credentials. These proofs and credentials may be evaluated and collected over extended time periods under the risk of having the underlying authorization policies or the user credentials being in inconsistent states. It therefore becomes possible for a policy-based authorization systems to make unsafe decisions that might threaten sensitive resources. In this paper, we highlight the criticality of the problem. We then present the first formalization of the concept of trusted transactions when dealing with proofs of authorizations. Accordingly, we define different levels of policy consistency constraints and present different enforcement approaches to guarantee the trustworthiness of transactions executing on cloud servers. We propose a Two-Phase Validation Commit protocol as a solution, that is a modified version of the basic Two-Phase Commit protocols. We finally provide performance analysis of the different presented approaches to guide the decision makers in which approach to use.

Keywords: Cloud databases, authorization policies, consistency, distributed transactions, atomic commit protocol

Published In: Proc. of the 2nd ICDCS International Workshop on Security and Privacy on the Cloud

ISBN: 978-0-7695-4386-4

Pages: pp. 253-262

Place Published: Minneapolis, Minnesota

Year Published: 2011

Note: DOI:10.1109/ICDCSW.2011.42

Project: Others Subject Area: Data Management on the Cloud

Publication Type: Workshop Paper

Sponsor: NSF IIS-1050301, NSF OIA-1028162

Citation:Text Latex BibTex XML Marian K. Iskander, Dave W. Wilkinson, Adam J. Lee, and Panos K. Chrysanthis. Enforcing Policy and Data Consistency of Cloud Transactions, Proc. of the 2nd ICDCS International Workshop on Security and Privacy on the Cloud (ICDCS-SPCC'11), pp. 253-262, 978-0-7695-4386-4, Minneapolis, Minnesota, June 2011.(DOI:10.1109/ICDCSW.2011.42)