Establishing RBAC-based secure interoperability in decentralized multi-domain environments

Authors:
Jinwei Hu;Ruixuan Li;Zhengding Lu
Affiliations:
College of Computer Science and Technology, Huazhong University of Science and Technology, Wuhan, China;College of Computer Science and Technology, Huazhong University of Science and Technology, Wuhan, China;College of Computer Science and Technology, Huazhong University of Science and Technology, Wuhan, China
Venue:
ICISC'07 Proceedings of the 10th international conference on Information security and cryptology
Year:
2007

Citing 14
Cited 1

Role-Based Access Control Models

Computer
Computational Issues in Secure Interoperation

IEEE Transactions on Software Engineering
Providing Security and Interoperation of HeterogeneousSystems

Distributed and Parallel Databases - Security of data and transaction processing
Proposed NIST standard for role-based access control

ACM Transactions on Information and System Security (TISSEC)
Merging Heterogeneous Security Orderings

ESORICS '96 Proceedings of the 4th European Symposium on Research in Computer Security: Computer Security
On mutually-exclusive roles and separation of duty

Proceedings of the 11th ACM conference on Computer and communications security
SERAT: SEcure role mApping technique for decentralized secure interoperability

Proceedings of the tenth ACM symposium on Access control models and technologies
An RBAC Framework for Time Constrained Secure Interoperation in Multi-domain Environments

WORDS '05 Proceedings of the 10th IEEE International Workshop on Object-Oriented Real-Time Dependable Systems
Secure Interoperation in a Multidomain Environment Employing RBAC Policies

IEEE Transactions on Knowledge and Data Engineering
Secure collaboration in mediator-free environments

Proceedings of the 12th ACM conference on Computer and communications security
Constraint generation for separation of duty

Proceedings of the eleventh ACM symposium on Access control models and technologies
Role-based access management for ad-hoc collaborative sharing

Proceedings of the eleventh ACM symposium on Access control models and technologies
Supporting authorization query and inter-domain role mapping in presence of hybrid role hierarchy

Proceedings of the eleventh ACM symposium on Access control models and technologies
Semantic access control for information interoperation

Proceedings of the eleventh ACM symposium on Access control models and technologies

RAR: A role-and-risk based flexible framework for secure collaboration

Future Generation Computer Systems

Quantified Score

Hi-index	0.00

Visualization

Abstract

Establishing interoperability is the first and foremost problem of secure interoperation in multi-domain environments. In this paper, we propose a framework to facilitate the establishment of secure interoperability in decentralized multi-domain environments, which employ Role-Based Access Control (RBAC) policies. In particular, we propose a method for setting up interoperating relationships between domains by combining role mappings and assignments of permissions to foreign roles. A key challenge in the establishment of secure interoperability is to guarantee security of individual domains in presence of interoperation. We present rules which regulate the interoperability. These rules ensure that constraints of RBAC policies are respected when cross-domain accesses are allowed.