Abstract:
Cloud computing is one of today’s most attractive
technology areas due to its many advantages like Highly
scalable, on-demand, web-accessed IT resources with
major cost / cash and flexibility. In this paper, the privacy
policies and access control strategies for academic private
cloud system are proposed to reduce the risk such as
stealing and misuse of the private personal data, user
profile management and accessing services offered on the
private cloud environment. This system has been
configured with Eucalyptus open source cloud
infrastructure in which the privacy policies and access
control strategies are enhanced. In order to solve these
security problems on the private cloud model, we can take
advantages of the existing Eucalyptus cloud infrastructure
and security in which we can elect to store highly sensitive
data of the university in the private storage cloud and less
sensitive data in public storage of the private cloud. The
main idea of privacy enhancement on a private cloud
computing model is applying the role-based access control
model as well as deploying privacy policies and security
constraints into the sensitive resources. For security
purpose, this paper extends the Role Based Access Control
model with role relationships and delegation for access
rights.