IRBAC 2000: Secure Interoperability Using Dynamic Role Translation
نویسندگان
چکیده
The secure interaction between two or more administrative domains is a major concern. We examine the issues of secure interoperability between two security domains operating under the Role Based Access Control (RBAC) Model. We propose a model that quickly establishes a exible policy for dynamic role translation. The role hierarchies of the local and foreign domains can be manipulated through our Role Editor which is used to set up associations between these hierarchies. These associations result in a combined partial ordering of the role hierarchies, which can be used to make meaningful access control decisions for secure interoperability.
منابع مشابه
Access control in ultra-large-scale systems using a data-centric middleware
The primary characteristic of an Ultra-Large-Scale (ULS) system is ultra-large size on any related dimension. A ULS system is generally considered as a system-of-systems with heterogeneous nodes and autonomous domains. As the size of a system-of-systems grows, and interoperability demand between sub-systems is increased, achieving more scalable and dynamic access control system becomes an im...
متن کاملEnabling Technologies for Interoperability
We present a new approach, which proposes to minimize the numerous problems existing in order to have fully interoperable GIS. We discuss the existence of these heterogeneity problems and the fact that they must be solved to achieve interoperability. These problems are addressed on three levels: the syntactic, structural and semantic level. In addition, we identify the needs for an approach per...
متن کاملSMMM - A Secure MultiMedia Mail System
This paper presents Secure MultiMedia Mail System (SMMM), a secure multimedia electronic mail system that deals with issues related to security, network traffic reduction and storage management of multimedia messages. The composition of M/H (multimedia/hypermedia) messages in SMMM is based on NCM (Nested Context Model), a conceptual model for hypermedia documents. SMMM provides support for mult...
متن کاملTrust-Based Constraint-Secure Interoperation for Dynamic Mediator-Free Collaboration
By collaboration, domains share resources effectively. To maintain security properties of individual domains during collaboration is a key issue. When domains employing heterogeneous RBAC policies collaborate via crossdomain role-role mappings, their locally-defined separation of duty constraints face the risk of breaching. We present the requirements for constraint-secure interoperation, prohi...
متن کاملHow a Secure and Open Mobile Agent Framework Suits Electronic Commerce Applications
The Mobile Agent (MA) paradigm seems able to support effectively distributed applications in open and heterogeneous environments, and application areas such as ecommerce appear to be of particular interest. However, MA technology has to answer to the requirements of security and interoperability to achieve wide deployment, especially in e-commerce applications. The paper focuses on security and...
متن کامل