Extending the CIM-SPL policy language with RBAC for distributed management systems in the WBEM infrastructure

Authors:
Li Pan;Jorge Lobo;Seraphin Calo
Affiliations:
Department of Electronic Engineering, Shanghai Jiao Tong University, China;IBM T. J. Watson Research Center;IBM T. J. Watson Research Center
Venue:
IM'09 Proceedings of the 11th IFIP/IEEE international conference on Symposium on Integrated Network Management
Year:
2009

Citing 2
Cited 1

Proposed NIST standard for role-based access control

ACM Transactions on Information and System Security (TISSEC)
A RBAC-Based Policy Information Base

POLICY '05 Proceedings of the Sixth IEEE International Workshop on Policies for Distributed Systems and Networks

Survey Paper: A survey on policy languages in network and security management

Computer Networks: The International Journal of Computer and Telecommunications Networking

Quantified Score

Hi-index	0.00

Visualization

Abstract

In spite of the large effort behind the development of the WBEM and CIM standards for the management of distributed systems, there has been very little work addressing security in those standards. In this paper we present a Role-based Access Control (RBAC) policy language to render fine-grained access control policies for WBEM and CIM. The language is an extension of CIM-SPL, a preliminary DMTF policy language standard. The CIM-SPL RBAC extension fully complies with the WBEM standards. Access control policies can be specified for CIM object constructs according to the standard NIST RBAC model as well as with an extended model adapted for CIM. This extension provides a policy-based RBAC mechanism in the WBEM infrastructure.