Communications of the ACM
Analysis and design of Web-based information systems
Selected papers from the sixth international conference on World Wide Web
An Oracle implementation of the PRA97 model for permission-role assignment
RBAC '98 Proceedings of the third ACM workshop on Role-based access control
The ARBAC97 model for role-based administration of roles
ACM Transactions on Information and System Security (TISSEC) - Special issue on role-based access control
Design and implementation of an access control processor for XML documents
Proceedings of the 9th international World Wide Web conference on Computer networks : the international journal of computer and telecommunications netowrking
A fine-grained access control system for XML documents
ACM Transactions on Information and System Security (TISSEC)
ACM SIGAda Ada Letters
Securing XML Documents with Author-X
IEEE Internet Computing
Controlling Access to XML Documents
IEEE Internet Computing
XML-Based Distributed Access Control System
EC-WEB '02 Proceedings of the Third International Conference on E-Commerce and Web Technologies
The PERMIS X.509 role based privilege management infrastructure
Future Generation Computer Systems - Special section: Selected papers from the TERENA networking conference 2002
PBDM: a flexible delegation model in RBAC
Proceedings of the eighth ACM symposium on Access control models and technologies
Framework for role-based delegation models
ACSAC '00 Proceedings of the 16th Annual Computer Security Applications Conference
Integrating PMI services in CORBA applications
Computer Standards & Interfaces - CORBA: protocols, applications, process models and standards
A rule-based framework for role-based delegation and revocation
ACM Transactions on Information and System Security (TISSEC)
Applying the Semantic Web Layers to Access Control
DEXA '03 Proceedings of the 14th International Workshop on Database and Expert Systems Applications
Design and implementation of a fine-grained menu control processor for web-based information systems
Future Generation Computer Systems - Selected papers on theoretical and computational aspects of structural dynamical systems in linear algebra and control
| Hi-index | 0.00 |
Web-based information systems (WISs) have been widely used by enterprises to accomplish business tasks through the Internet. For contemporary WISs, it is important that when a user logs into a WIS, the user should be able to see his or her own view of the system. To do so, it is imperative that a flexible authorization and delegation model should be developed for WISs. In particular, the delegation model should support fine-grained delegation and controlled propagation on targets. In this paper, we attempt to develop a flexible delegation model for WISs. The model is called Extensible Markup Language (XML)-based delegation and revocation (XDR) model which supports fine-grained delegation and controlled propagation on resources. Furthermore, the proposed model supports various types of delegation and revocation, such as single-step delegation, multistep delegation, multiple delegation, partial delegation, separation of duties (SOD), and cascading revocation. Finally, a prototype was designed and implemented to demonstrate the feasibility of the proposed model.