Role-Based Access Control Models
Computer
Computational Issues in Secure Interoperation
IEEE Transactions on Software Engineering
Providing Security and Interoperation of HeterogeneousSystems
Distributed and Parallel Databases - Security of data and transaction processing
Managing security policies in a distributed environment using eXtensible markup language (XML)
Proceedings of the 2001 ACM symposium on Applied computing
Temporal hierarchies and inheritance semantics for GTRBAC
SACMAT '02 Proceedings of the seventh ACM symposium on Access control models and technologies
Data integration: a theoretical perspective
Proceedings of the twenty-first ACM SIGMOD-SIGACT-SIGART symposium on Principles of database systems
The description logic handbook: theory, implementation, and applications
The description logic handbook: theory, implementation, and applications
Access-Control Language for Multidomain Environments
IEEE Internet Computing
GEO-RBAC: a spatially aware RBAC
Proceedings of the tenth ACM symposium on Access control models and technologies
SERAT: SEcure role mApping technique for decentralized secure interoperability
Proceedings of the tenth ACM symposium on Access control models and technologies
Secure Interoperation in a Multidomain Environment Employing RBAC Policies
IEEE Transactions on Knowledge and Data Engineering
Supporting authorization query and inter-domain role mapping in presence of hybrid role hierarchy
Proceedings of the eleventh ACM symposium on Access control models and technologies
Semantic agent system for automatic mobilization of distributed and heterogeneous resources
Proceedings of the 3rd International Conference on Web Intelligence, Mining and Semantics
| Hi-index | 0.00 |
In this paper we propose a framework for supporting interoperation between access control systems of different organizations in a collaborative environment. We assume that each organization regulates access to resources using the role based access control (RBAC) model. We define the scope of collaboration as the set of shared resources, of shared operations that those resources can execute, and of roles that can execute those operations. We address collaborative scenarios in which the scope of collaboration changes based on autonomous sharing policies of each organization. We assume that resources are mobile and that their operations can be executed only at the location in which they reside. Our framework supports queries about location of resources, of operations that those resources can execute, and of access rights that allow the execution of those operations. In order to support this type of queries, the RBAC policies of the collaborating organizations are integrated into a global RBAC policy that acts as a mediator. Our framework uses the Web Ontology Language (OWL) to represent: 1) the global RBAC policy; 2) the local RBAC policies belonging to different organizations; and 3) relationships between the global and local RBAC policies.