UNDERSTANDING ACCESS CONTROL CHALLENGES IN LOOSELY-COUPLED MULTIDOMAIN ENVIRONMENTS

Yue Zhang, James B. D. Joshi

2010

Abstract

Access control to ensure secure interoperation in multidomain environments is a crucial challenge. A multidomain environment can be categorized as tightly-coupled or loosely-coupled. The specific access control challenges in loosely-coupled environments have not been studied adequately in the literature. In this paper, we analyze the access control challenges specific to loosely-coupled environments. Based on our analysis, we propose a decentralized secure interoperation framework for loosely-coupled environments based on Role Based Access Control (RBAC). We believe our work takes the first step towards a more complete secure interoperation solution for loosely-coupled environment.

References

  1. Blaze, M., Feigenbaum, J., and Lacy, J. 1996. Decentralized Trust Management. In Proceedings of the 1996 IEEE Symposium on Security and Privacy (May 06 - 08, 1996). SP. IEEE Computer Society, Washington, DC, 164.
  2. Ferraiolo, D. F., Sandhu, R., Gavrila, S., Kuhn, D. R., and Chandramouli, R. 2001. Proposed NIST standard for role-based access control. ACM Trans. Inf. Syst. Secur. 4, 3 (Aug. 2001), 224-274.
  3. Gong, L. and Qian, X. 1996. Computational Issues in Secure Interoperation. IEEE Trans. Softw. Eng. 22, 1 (Jan. 1996), 43-52.
  4. Joshi, J. B., Bertino, E., and Ghafoor, A. 2002. Temporal hierarchies and inheritance semantics for GTRBAC. In Proceedings of the Seventh ACM Symposium on Access Control Models and Technologies (Monterey, California, USA, June 03 - 04, 2002). SACMAT 7802. ACM, New York, NY, 74-83.
  5. Li, N., Mitchell, J. C., and Winsborough, W. H. 2002. Design of a Role-Based Trust-Management Framework. In Proceedings of the 2002 IEEE Symposium on Security and Privacy (May 12 - 15, 2002). SP. IEEE Computer Society, Washington, DC, 114.
  6. Shafiq, B., Joshi, J. B., Bertino, E., and Ghafoor, A. 2005. Secure Interoperation in a Multidomain Environment Employing RBAC Policies. IEEE Trans. on Knowl. and Data Eng. 17, 11 (Nov. 2005), 1557-1577.
  7. Zhang. Y., and Joshi. J. B. 2010. Role Based Domain Discovery in Decentralized Secure Interoperations. To Appear In Proceedings of the 2010 Collaborative Technologies and Systems (May 17 - 21, 2010). Chicago, IL.
Download


Paper Citation


in Harvard Style

Zhang Y. and B. D. Joshi J. (2010). UNDERSTANDING ACCESS CONTROL CHALLENGES IN LOOSELY-COUPLED MULTIDOMAIN ENVIRONMENTS . In Proceedings of the 12th International Conference on Enterprise Information Systems - Volume 3: ICEIS, ISBN 978-989-8425-06-5, pages 356-361. DOI: 10.5220/0002976903560361


in Bibtex Style

@conference{iceis10,
author={Yue Zhang and James B. D. Joshi},
title={UNDERSTANDING ACCESS CONTROL CHALLENGES IN LOOSELY-COUPLED MULTIDOMAIN ENVIRONMENTS},
booktitle={Proceedings of the 12th International Conference on Enterprise Information Systems - Volume 3: ICEIS,},
year={2010},
pages={356-361},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0002976903560361},
isbn={978-989-8425-06-5},
}


in EndNote Style

TY - CONF
JO - Proceedings of the 12th International Conference on Enterprise Information Systems - Volume 3: ICEIS,
TI - UNDERSTANDING ACCESS CONTROL CHALLENGES IN LOOSELY-COUPLED MULTIDOMAIN ENVIRONMENTS
SN - 978-989-8425-06-5
AU - Zhang Y.
AU - B. D. Joshi J.
PY - 2010
SP - 356
EP - 361
DO - 10.5220/0002976903560361