Design and implementation of cloud API access control based on OAuth

Meng Yu Wu, Tsern-Huei Lee

Research output: Chapter in Book/Report/Conference proceedingConference contribution

4 Scopus citations

Abstract

As the popularity of cloud computing increases, cloud services can provide rich functionality by means of standardized APIs based on open technology. More and more web services offer APIs for application developers to use. APIs act as the intermediate between application developers and web services. The security of cloud computing depends largely on the management of APIs. Hence a strong API access control model is required. In this paper, we design and implement an API access control mechanism based on OAuth which simplifies its process flow under different application scenarios. We also show how access control mechanism can be realized as REST-style web services.

Original languageEnglish
Title of host publicationIEEE 2013 Tencon - Spring, TENCONSpring 2013 - Conference Proceedings
Pages485-489
Number of pages5
DOIs
StatePublished - 16 Sep 2013
Event2013 1st IEEE TENCON Spring Conference, TENCONSpring 2013 - Sydney, NSW, Australia
Duration: 17 Apr 201319 Apr 2013

Publication series

NameIEEE 2013 Tencon - Spring, TENCONSpring 2013 - Conference Proceedings

Conference

Conference2013 1st IEEE TENCON Spring Conference, TENCONSpring 2013
CountryAustralia
CitySydney, NSW
Period17/04/1319/04/13

Keywords

  • API access control
  • TBAC
  • cloud computing
  • cloud security

Fingerprint Dive into the research topics of 'Design and implementation of cloud API access control based on OAuth'. Together they form a unique fingerprint.

  • Cite this

    Wu, M. Y., & Lee, T-H. (2013). Design and implementation of cloud API access control based on OAuth. In IEEE 2013 Tencon - Spring, TENCONSpring 2013 - Conference Proceedings (pp. 485-489). [6584492] (IEEE 2013 Tencon - Spring, TENCONSpring 2013 - Conference Proceedings). https://doi.org/10.1109/TENCONSpring.2013.6584492