An Equivalent Access Based Approach for Building Collaboration Model between Distinct Access Control Models

Abstract : Organizations collaborate with each other for resource sharing and task performing. To protect their resources from unauthorized access the organization domains adopt own access control models. The collaboration thus faces a problem that how a secure collaboration is built between the domains with distinct access control models. Currently there are approaches focusing on role based access control model (RBAC), where role mapping is considered to be the main technique. It assumes that all organizations adopt RBAC model, then builds a global access control policy on role mappings. However if the organization domains, also including collaboration domain, use distinct access control models, role mapping and global policy can not be built on these models. In this paper we propose an equivalent access based approach and introduce a mediator involved collaboration pattern, where access control model entities have corresponding mapping and linking sets on which the equivalent accesses are built. Collaboration also introduces the ”Inter Domain Role Mapping” (IDRM) problem and we thus propose new algorithms for IDRM problem based on flat and hierarchical role structures, in addition we also introduce the necessary constraints transforming between organization and collaboration domains. Finally we analyzes our algorithms and present the testing and comparison results with existed approaches.
Type de document :
Communication dans un congrès
Bart Decker; Jana Dittmann; Christian Kraetzer; Claus Vielhauer. 14th International Conference on Communications and Multimedia Security (CMS), Sep 2013, Magdeburg,, Germany. Springer, Lecture Notes in Computer Science, LNCS-8099, pp.185-194, 2013, Communications and Multimedia Security. 〈10.1007/978-3-642-40779-6_16〉
Liste complète des métadonnées

https://hal.inria.fr/hal-01492820
Contributeur : Hal Ifip <>
Soumis le : lundi 20 mars 2017 - 15:51:28
Dernière modification le : lundi 20 mars 2017 - 15:55:41
Document(s) archivé(s) le : mercredi 21 juin 2017 - 13:38:21

Fichier

978-3-642-40779-6_16_Chapter.p...
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Xiaofeng Xia. An Equivalent Access Based Approach for Building Collaboration Model between Distinct Access Control Models. Bart Decker; Jana Dittmann; Christian Kraetzer; Claus Vielhauer. 14th International Conference on Communications and Multimedia Security (CMS), Sep 2013, Magdeburg,, Germany. Springer, Lecture Notes in Computer Science, LNCS-8099, pp.185-194, 2013, Communications and Multimedia Security. 〈10.1007/978-3-642-40779-6_16〉. 〈hal-01492820〉

Partager

Métriques

Consultations de la notice

63

Téléchargements de fichiers

30