| Centralized Role-Based Access Control for Federated Multi-Domain Environments |
| |
| 作者姓名: | YU Guangcan LU Zhengding LI Ruixuan MUDAR Sarem |
| |
| 作者单位: | [1]College of Computer Science and Technology, Huazhong University of Science and Technology, Wuhan 430074, Hubei, China [2]School of Software Engineering, Huazhong University of Science and Technology, Wuhan 430074, Hubei, China |
| |
| 基金项目: | 国家自然科学基金;湖北省自然科学基金 |
| |
| 摘 要: | The secure interaction among multiple security domains is a major concern. In this paper, we highlight the issues of secure interoperability among multiple security domains operating under the widely accepted Role Based Access Control (RBAC) model. We propose a model called CRBAC that easily establishes a global policy for roles mapping among multiple security domains. Our model is based on an extension of the RBAC model. Also, multiple security domains were composed to one abstract security domain. Also roles in the multiple domains are translated to permissions of roles in the abstract security domain. These permissions keep theirs hierarchies. The roles in the abstract security domain implement roles mapping among the multiple security domains. Then, authorized users of any security domain can transparently access resources in the multiple domains.
|
| 关 键 词: | RBAC 存取控制 同盟 信息安全 |
| 文章编号: | 1007-1202(2006)06-1688-05 |
| 收稿时间: | 2006-05-15 |
Centralized role-based access control for federated multi-domain environments |
| |
| YU Guangcan LU Zhengding LI Ruixuan MUDAR Sarem.Centralized Role-Based Access Control for Federated Multi-Domain Environments[J].Wuhan University Journal of Natural Sciences,2006,11(6):1688-1692. |
| |
| Authors: | Yu Guangcan Li Zhengding Li Ruixuan Mudar Sarem |
| |
| Institution: | (1) College of Computer Science and Technology, Huazhong University of Science and Technology, 430074 Wuhan, Hubei, China;(2) School of Software Engineering, Huazhong University of Science and Technology, 430074 Wuhan, Hubei, China |
| |
| Abstract: | The secure interaction among multiple security domains is a major concern. In this paper, we highlight the issues of secure interoperability among multiple security domains operating under the widely accepted Role Based Access Control (RBAC) model. We propose a model called CRBAC that easily establishes a global policy for roles mapping among multiple security domains. Our model is based on an extension of the RBAC model. Also, multiple security domains were composed to one abstract security domain. Also roles in the multiple domains are translated to permissions of roles in the abstract security domain. These permissions keep theirs hierarchies. The roles in the abstract security domain implement roles mapping among the multiple security domains. Then, authorized users of any security domain can transparently access resources in the multiple domains. |
| |
| Keywords: | RBAC(role based access control) federated multi-domain |
| 本文献已被 CNKI 维普 万方数据 SpringerLink 等数据库收录! |
