GARD: Generic access rights delegation framework for collaborative environment

2015 Conference on Information Assurance and Cyber Security (CIACS) Pub Date : 2015-12-01 DOI:10.1109/CIACS.2015.7395560

Amir Ali, A. Kanwal, M. A. Shibli

{"title":"GARD: Generic access rights delegation framework for collaborative environment","authors":"Amir Ali, A. Kanwal, M. A. Shibli","doi":"10.1109/CIACS.2015.7395560","DOIUrl":null,"url":null,"abstract":"Delegation of access rights is becoming a common requirement of cloud based organizations. In this regard, various delegation models have been proposed. These models are strongly coupled with their specific access control model (ACM). For instance, if organization has deployed Role based Access Control (RBAC) model then it must use Role Based Delegation Model (RBDM). Similarly, Attribute Based Access Control (ABAC) model requires Attribute Based Delegation (ABDM) and so on. However, when organizations need to work in a collaborative environment, their heterogeneous environment in the context of ACMs, makes the delegation process difficult to achieve. To solve this issue, we have proposed a Generic Access Rights Delegation (GARD) framework for collaborative environment. We have considered group-centric Secure Information Sharing (g-SIS) model to develop a collaborative environment. Our framework generates a delegation policy as per underlying ACM of participating organization, dynamically. GARD provides interoperability between different ACMs during generation of delegation policies.","PeriodicalId":150980,"journal":{"name":"2015 Conference on Information Assurance and Cyber Security (CIACS)","volume":"8 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2015-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2015 Conference on Information Assurance and Cyber Security (CIACS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/CIACS.2015.7395560","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

Abstract

Delegation of access rights is becoming a common requirement of cloud based organizations. In this regard, various delegation models have been proposed. These models are strongly coupled with their specific access control model (ACM). For instance, if organization has deployed Role based Access Control (RBAC) model then it must use Role Based Delegation Model (RBDM). Similarly, Attribute Based Access Control (ABAC) model requires Attribute Based Delegation (ABDM) and so on. However, when organizations need to work in a collaborative environment, their heterogeneous environment in the context of ACMs, makes the delegation process difficult to achieve. To solve this issue, we have proposed a Generic Access Rights Delegation (GARD) framework for collaborative environment. We have considered group-centric Secure Information Sharing (g-SIS) model to develop a collaborative environment. Our framework generates a delegation policy as per underlying ACM of participating organization, dynamically. GARD provides interoperability between different ACMs during generation of delegation policies.

查看原文本刊更多论文

GARD:协作环境的通用访问权限授权框架

访问权限的授权正在成为基于云的组织的共同需求。在这方面，已经提出了各种授权模式。这些模型与其特定的访问控制模型(ACM)紧密耦合。例如，如果组织已经部署了基于角色的访问控制(RBAC)模型，那么它必须使用基于角色的委托模型(RBDM)。类似地，基于属性的访问控制(ABAC)模型需要基于属性的委托(ABDM)等。然而，当组织需要在协作环境中工作时，它们在acm上下文中的异构环境使得授权过程难以实现。为了解决这一问题，我们提出了一个用于协作环境的通用访问权限授权(GARD)框架。我们考虑了以组为中心的安全信息共享(g-SIS)模型来开发协作环境。我们的框架根据参与组织的底层ACM动态地生成委托策略。GARD在生成委托策略期间提供不同acm之间的互操作性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2015 Conference on Information Assurance and Cyber Security (CIACS)

自引率

0.00%

发文量