Skip to Main content Skip to Navigation
Conference papers

An Equivalent Access Based Approach for Building Collaboration Model between Distinct Access Control Models

Abstract : Organizations collaborate with each other for resource sharing and task performing. To protect their resources from unauthorized access the organization domains adopt own access control models. The collaboration thus faces a problem that how a secure collaboration is built between the domains with distinct access control models. Currently there are approaches focusing on role based access control model (RBAC), where role mapping is considered to be the main technique. It assumes that all organizations adopt RBAC model, then builds a global access control policy on role mappings. However if the organization domains, also including collaboration domain, use distinct access control models, role mapping and global policy can not be built on these models. In this paper we propose an equivalent access based approach and introduce a mediator involved collaboration pattern, where access control model entities have corresponding mapping and linking sets on which the equivalent accesses are built. Collaboration also introduces the ”Inter Domain Role Mapping” (IDRM) problem and we thus propose new algorithms for IDRM problem based on flat and hierarchical role structures, in addition we also introduce the necessary constraints transforming between organization and collaboration domains. Finally we analyzes our algorithms and present the testing and comparison results with existed approaches.
Complete list of metadata
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Monday, March 20, 2017 - 3:51:28 PM
Last modification on : Monday, March 20, 2017 - 3:55:41 PM
Long-term archiving on: : Wednesday, June 21, 2017 - 1:38:21 PM


Files produced by the author(s)


Distributed under a Creative Commons Attribution 4.0 International License



Xiaofeng Xia. An Equivalent Access Based Approach for Building Collaboration Model between Distinct Access Control Models. 14th International Conference on Communications and Multimedia Security (CMS), Sep 2013, Magdeburg,, Germany. pp.185-194, ⟨10.1007/978-3-642-40779-6_16⟩. ⟨hal-01492820⟩



Record views


Files downloads