An Extensible Framework for RBAC in Dynamic Ad-Hoc Coalitions

Abstract

The need to securely share information in dynamic ad-hoc coalition among collaborating entities is increasingly becoming important. In a dynamic coalition environment, organizations should be able to execute their local fine-grained access control policies when sharing resources with external entities. To facilitate such sharing, some automatic, efficient and secure solutions are needed. In this paper, we discuss an extensible framework based on XACML administration and delegation profile. This framework provides authorization policy represents, dynamic permission definition, delegation condition with complete administrative control. We have created a web-services implementation of our model and confirm that it is an efficient solution for web-based dynamic ad-ho coalition authorization.