{"title":"走向通用的访问控制模型","authors":"Samira Haguouche, Zahi Jarir","doi":"10.1109/ICOCS.2015.7483257","DOIUrl":null,"url":null,"abstract":"Organizations in a collaborative environment expose their services to an external usage which requires more preoccupation with security issues. Access control is one of these required security concerns. Several access control models are defined in the literature and this multitude of models creates heterogeneity of access control systems between the collaborating organizations. And this is manifested in the policy definition languages as well as in the enforcement mechanisms. In this paper, we propose a generic model of access control that allows defining each authorization rule in an abstract manner (high level language). These abstract policies can be mapped into low level concrete policies written according to the model adopted by the organization. The abstraction of the access control will involve elements of access control systems that are: models, policies and mechanisms.","PeriodicalId":123709,"journal":{"name":"2015 Third World Conference on Complex Systems (WCCS)","volume":"28 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2015-11-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":"{\"title\":\"Toward a generic access control model\",\"authors\":\"Samira Haguouche, Zahi Jarir\",\"doi\":\"10.1109/ICOCS.2015.7483257\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Organizations in a collaborative environment expose their services to an external usage which requires more preoccupation with security issues. Access control is one of these required security concerns. Several access control models are defined in the literature and this multitude of models creates heterogeneity of access control systems between the collaborating organizations. And this is manifested in the policy definition languages as well as in the enforcement mechanisms. In this paper, we propose a generic model of access control that allows defining each authorization rule in an abstract manner (high level language). These abstract policies can be mapped into low level concrete policies written according to the model adopted by the organization. The abstraction of the access control will involve elements of access control systems that are: models, policies and mechanisms.\",\"PeriodicalId\":123709,\"journal\":{\"name\":\"2015 Third World Conference on Complex Systems (WCCS)\",\"volume\":\"28 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2015-11-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"2\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2015 Third World Conference on Complex Systems (WCCS)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICOCS.2015.7483257\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2015 Third World Conference on Complex Systems (WCCS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICOCS.2015.7483257","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Organizations in a collaborative environment expose their services to an external usage which requires more preoccupation with security issues. Access control is one of these required security concerns. Several access control models are defined in the literature and this multitude of models creates heterogeneity of access control systems between the collaborating organizations. And this is manifested in the policy definition languages as well as in the enforcement mechanisms. In this paper, we propose a generic model of access control that allows defining each authorization rule in an abstract manner (high level language). These abstract policies can be mapped into low level concrete policies written according to the model adopted by the organization. The abstraction of the access control will involve elements of access control systems that are: models, policies and mechanisms.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
