A framework for modeling restricted delegation in service oriented architecture

Authors:
Muhammad Alam;Michael Hafner;Ruth Breu;Stefan Unterthiner
Affiliations:
Quality Engineering, University of Innsbruck, Innsbruck, Tirol, Austria;Quality Engineering, University of Innsbruck, Innsbruck, Tirol, Austria;Quality Engineering, University of Innsbruck, Innsbruck, Tirol, Austria;Quality Engineering, University of Innsbruck, Innsbruck, Tirol, Austria
Venue:
TrustBus'06 Proceedings of the Third international conference on Trust, Privacy, and Security in Digital Business
Year:
2006

Citing 9
Cited 3

Extending the Security Assertion Markup Language to Support Delegation for Web Services and Grid Services

ICWS '05 Proceedings of the IEEE International Conference on Web Services
Modelling Inter-organizational Workflow Security in a Peer-to-Peer Environment

ICWS '05 Proceedings of the IEEE International Conference on Web Services
Attributed Based Access Control (ABAC) for Web Services

ICWS '05 Proceedings of the IEEE International Conference on Web Services
Modeling permissions in a (U/X)ML world

ARES '06 Proceedings of the First International Conference on Availability, Reliability and Security
Trust management with safe privilege propagation

APPT'05 Proceedings of the 6th international conference on Advanced Parallel Processing Technologies
Web service engineering – advancing a new software engineering discipline

ICWE'05 Proceedings of the 5th international conference on Web Engineering
XML-Based revocation and delegation in a distributed environment

EDBT'04 Proceedings of the 2004 international conference on Current Trends in Database Technology
Using trust for restricted delegation in grid environments

ISPEC'05 Proceedings of the First international conference on Information Security Practice and Experience
Model driven security for inter-organizational workflows in e-government

TCGOV'05 Proceedings of the 2005 international conference on E-Government: towards Electronic Democracy

Constraint based role based access control in the SECTET-framework: A model-driven approach

Journal of Computer Security - Privacy, Security and Trust (PST) Technologies: Evolution and Challenges
Constraint based role based access control (CRBAC) for restricted administrative delegation constraints in the SECTET

Proceedings of the 2006 International Conference on Privacy, Security and Trust: Bridge the Gap Between PST Technologies and Business Services
Model driven security engineering for the realization of dynamic security requirements in collaborative systems

MoDELS'06 Proceedings of the 2006 international conference on Models in software engineering

Quantified Score

Hi-index	0.01

Visualization

Abstract

We present a novel approach for modeling restricted delegation of rights in a distributed environment based on web services. Our approach is based on SECTET-PL [5], a predicative language for modeling access rights based on the concept of Role Based Access Control (RBAC). SECTET-PL is part of the SECTET framework for model-driven security for B2B workflows. Our Rights Delegation Model combines the concept of roles from RBAC with the predicative specification of SECTET-PL. The Rights Delegation Models are translated into XACML Delegation Policies, which are interpreted by a security gateway.