An Attribute-Based Access Control Model for Web Services

Authors:
Hai-bo Shen;Fan Hong
Affiliations:
Huazhong University of Science and Technology, China;Huazhong University of Science and Technology, China
Venue:
PDCAT '06 Proceedings of the Seventh International Conference on Parallel and Distributed Computing, Applications and Technologies
Year:
2006

Citing 0
Cited 8

Model-driven business process security requirement specification

Journal of Systems Architecture: the EUROMICRO Journal
Policy management architecture based on provisioning model and authorization certificates

Proceedings of the 2009 ACM symposium on Applied Computing
A Semantic-Aware Attribute-Based Access Control Model for Web Services

ICA3PP '09 Proceedings of the 9th International Conference on Algorithms and Architectures for Parallel Processing
Intelligent security and access control framework for service-oriented architecture

Information and Software Technology
An extended XACML model to ensure secure information access for web services

Journal of Systems and Software
Policy control management for web services

IM'09 Proceedings of the 11th IFIP/IEEE international conference on Symposium on Integrated Network Management
Modeling and negotiating service quality

Service research challenges and solutions for the future internet
A trust and context aware access control model for web services conversations

TrustBus'07 Proceedings of the 4th international conference on Trust, Privacy and Security in Digital Business

Quantified Score

Hi-index	0.00

Visualization

Abstract

Web service is a new service-oriented computing paradigm which poses the unique security challenges due to its inherent heterogeneity, multi-domain characteristic and highly dynamic nature. A key challenge in Web services security is the design of effective access control schemes. However, most current access control systems base authorization decisions on subject's identity. Administrative scalability and control granularity are serious problems in those systems, and they are not fit for Web services environment. So an attribute-based access control model (WS-ABAC) is presented to address these issues in this paper. WS-ABAC grants access to services based on attributes of the related entities, and uses automated trust negotiation mechanism to address the disclosure issue of the sensitive attributes. It can provide administratively scalable alternative to identity-based authorization methods and provide fine-grained access control for Web services. Moreover, it also can protect user's privacy.