The RBAC model and implementation architecture in multi-domain environment

Authors:
Zan Yang;Jian-Xin Wang;Lin Yang;Rui-Guang Yang;Bao-Sheng Kou;Jie-Kun Chen;Shu-Mei Yang
Affiliations:
Institute of Command Automation, PLAUST, Nanjing, China 270001;Institute of EESEC of China, Beijing, China 100141;Institute of EESEC of China, Beijing, China 100141;Institute of EESEC of China, Beijing, China 100141;The 61046 and 316 Medical troops of China, Beijing, China 100000;The 61046 and 316 Medical troops of China, Beijing, China 100000;The 61046 and 316 Medical troops of China, Beijing, China 100000
Venue:
Electronic Commerce Research
Year:
2013

Citing 17
Cited 0

Role-Based Access Control Models

Computer
The NIST model for role-based access control: towards a unified standard

RBAC '00 Proceedings of the fifth ACM workshop on Role-based access control
TRBAC: A temporal role-based access control model

ACM Transactions on Information and System Security (TISSEC)
Design of a Role-Based Trust-Management Framework

SP '02 Proceedings of the 2002 IEEE Symposium on Security and Privacy
IRBAC 2000: Secure Interoperability Using Dynamic Role Translation

IRBAC 2000: Secure Interoperability Using Dynamic Role Translation
Role-Based Access Controls: Status, Dissemination, and Prospects for Generic Security Mechanisms

Electronic Commerce Research
Managing the Performance Impact of Web Security

Electronic Commerce Research
Using Aspects for Security Engineering of Web Service Compositions

ICWS '05 Proceedings of the IEEE International Conference on Web Services
An RBAC Framework for Time Constrained Secure Interoperation in Multi-domain Environments

WORDS '05 Proceedings of the 10th IEEE International Workshop on Object-Oriented Real-Time Dependable Systems
A distributable security management architecture for enterprise systems spanning multiple security domains

Electronic Commerce Research
Access Control and Authorization Constraints for WS-BPEL

ICWS '06 Proceedings of the IEEE International Conference on Web Services
Domain Based Access Control Model for Distributed Collaborative Applications

E-SCIENCE '06 Proceedings of the Second IEEE International Conference on e-Science and Grid Computing
User-credential based role mapping in multi-domain environment

Proceedings of the 2006 International Conference on Privacy, Security and Trust: Bridge the Gap Between PST Technologies and Business Services
Beyond e-business models: the road to virtual worlds

Electronic Commerce Research
Security for Web Services and Service-Oriented Architectures

Security for Web Services and Service-Oriented Architectures
Adding Attributes to Role-Based Access Control

Computer
Access control: principle and practice

IEEE Communications Magazine

Quantified Score

Hi-index	0.00

Visualization

Abstract

Nowadays in the IT convergence environment, the Service Oriented Architecture has its unique significance. The RBAC model has a variety of advantages in protecting the security of services. When the network is extended to a certain scale, it must be divided into multi domains for convenient management. However, the study to the RBAC model can be applied in multi-domain environment is still lacked. Corresponding feasible implementation architectures for the individual and composite services are also in weak. In this paper, we proposed a domain model and a domain based RBAC model can better adapt to the multi-domain security requirements. Then based on the model we designed feasible and efficient access control architectures respectively focusing on the individual services and different type of composite services. The evaluation cases showed the proposed model and implementation architectures achieved desired effects and the performances are in promising.