A RBAC-Based Policy Information Base

Authors:
Timothy E. Squair;Edgard Jamhour;Ricardo C. Nabhen
Affiliations:
Pontifícia Universidade Católica do Paraná;Pontifícia Universidade Católica do Paraná;Pontifícia Universidade Católica do Paraná
Venue:
POLICY '05 Proceedings of the Sixth IEEE International Workshop on Policies for Distributed Systems and Networks
Year:
2005

Citing 0
Cited 2

A new architecture for performance-based policy management in heterogeneous wireless networks

Mobility '08 Proceedings of the International Conference on Mobile Technology, Applications, and Systems
Extending the CIM-SPL policy language with RBAC for distributed management systems in the WBEM infrastructure

IM'09 Proceedings of the 11th IFIP/IEEE international conference on Symposium on Integrated Network Management

Quantified Score

Hi-index	0.00

Visualization

Abstract

This paper presents a framework for representing and distributing access control policies in distributed heterogeneous systems. Access control polices follow the RBAC (Role Based Access Control) model proposed by the NIST. The framework is based on the provisioning strategy defined by IETF, i.e., the RBAC information is represented in terms of a PIB (Policy Information Base) and distributed to the enforcement elements using the COPS-PR protocol. This approach can be explored in several scenarios, for configuring both, network devices and RBAC-aware applications. The provisioning process takes into account the capabilities of the enforcement element, permitting to eliminate or adapt the configuration not supported by the managed device or application.