RBPIM: A PCIM-Based Framework for RBAC

Authors:
Ricardo Nabhen;Edgard Jamhour;Carlos Maziero
Affiliations:
-;-;-
Venue:
LCN '03 Proceedings of the 28th Annual IEEE International Conference on Local Computer Networks
Year:
2003

Citing 0
Cited 2

Development of an access control model, system architecture and approaches for resource sharing in virtual enterprise

Computers in Industry
Ubiquitous-City Integrated Authentication System (UCIAS)

Journal of Intelligent Manufacturing

Quantified Score

Hi-index	0.00

Visualization

Abstract

This paper presents a PCIM-based framework forstoring and enforcing RBAC (Role Based Access Control)policies in distributed heterogeneous systems. PCIM(Policy Core Information Model) is a generic informationmodel proposed by IETF. This paper proposes a PCIMextension, called RBPIM (Role-Based Policy InformationModel), in order to represent network access policiesbased on the RBAC model. A RBPIM implementationframework based on the PDP/PEP (Policy DecisionPoint/Policy Enforcement Point) approach is alsopresented. In the proposed framework, thecommunication between the PDP and the PEPs isimplemented using the COPS (Common Open PolicyService) protocol, also defined by the IETF. Theframework adopts the outsourcing approach, where thepolicy rules are evaluated by the PDP, as defined by theCOPS standard. This paper evaluates the outsourcingmodel for access control by presenting a case study andthe average response time of PDP under different loadconditions.