An XML-based language for access control specifications in an RBAC environment
نویسندگان
چکیده
Lately, Web-accessed resources have superceded the resources accessed by local or wide-area networks. Therefore, new mechanisms should be implemented for protecting resources from unknown clients. Attribute Certificates is a quite new technology offering such functionality. Those certificates are issued by Attribute Authorities validating the attributes of the owner of the certificate. Based on this technology an XML-based access control mechanism is introduced for protecting any kind of resources (from both known and unknown clients). The proposed model is ultimately rolebased since both clients and protected resources are organized into roles. Moreover, an XML-based language is introduced to express roles, authorizations, delegation rules, hierarchies and certificates.
منابع مشابه
X - Rbac : an Access Control Language for Multi - Domain Environments
A multi-domain application environment consists of distributed multiple organizations, each employing its own security policy, allowing highly intensive inter-domain accesses. Ensuring security in such an environment poses several challenges. XML technologies are being perceived as the most promising approach for developing pragmatic security solutions for such environments because of the integ...
متن کاملXML for RBAC Administration in Enterprise Environment
We have proposed an object -oriented RBAC (ORBAC) model to efficiently represent the real world. Though ORBAC is a good model, administration of ORBAC including creating and maintaining an access control security policy still remains a challengeable problem. In this paper, we present a practical method that can be employed in an enterprise environment to manage security policies using eXtensibl...
متن کاملUsing Multi-Level Role Based Access Control for Wireless Classified Environments
Wireless environments have been researched considerably over many years. Initially, such applications involve the use of radios but have later evolved into satellites, cellular phones and global positioning systems. One detail involving wireless environments is the need to have them restricted only to those who have a need to use a wireless environment. Such users would have a role with permiss...
متن کاملXML Implementation of RBAC in Health Care Adhoc Networks
As adhoc networks are becoming popular for a variety of applications, so are the issues engulfing their implementations. In this paper, we describe a health care application in an area where normal network connectivity is not available hence adhoc networking of small scale health care units and corresponding devices become necessary. We discuss how different roles of such units can be framed to...
متن کاملAn Extended Role Based Access Control Method for XML Documents
As XML has been increasingly important as the Data-change format of Internet and Intranet, Access-Control-On-XML-Properties rises as a new issue. Role-Based Access Control (RBAC) is an access control method that has been widely used in Internet, Operation System and Relation Data Base these 10 years. Though RBAC is already relatively mature in the above fields, new problems occur when it is use...
متن کامل