多域环境中时间约束安全互操作的RBAC框架

10th IEEE International Workshop on Object-Oriented Real-Time Dependable Systems Pub Date : 2005-02-02 DOI:10.1109/WORDS.2005.18

Smithi Piromruen, J. Joshi

{"title":"多域环境中时间约束安全互操作的RBAC框架","authors":"Smithi Piromruen, J. Joshi","doi":"10.1109/WORDS.2005.18","DOIUrl":null,"url":null,"abstract":"In emerging e-commerce applications, time constrained information sharing between different systems is becoming a common phenomenon. A flexible and efficient mechanism is needed to support short term time-based sharing policies between transient partners. In particular, the interacting domains need to establish a time-based inter-domain access policy without violating the original time-based security policies of the individual systems. In this paper, we address this issue using the generalized temporal role based access control (GTRBAC) framework. The proposed mechanism involves a system processing an inter-domain access requirement specification to extend or restructure its local GTRBAC policy with proper temporal constraints to allow its external partner domain to access its resources. The transformed local GTRBAC policy facilitates the inter-domain accesses while still conforming to the original local policy requirements.","PeriodicalId":335355,"journal":{"name":"10th IEEE International Workshop on Object-Oriented Real-Time Dependable Systems","volume":"80 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2005-02-02","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"42","resultStr":"{\"title\":\"An RBAC framework for time constrained secure interoperation in multi-domain environments\",\"authors\":\"Smithi Piromruen, J. Joshi\",\"doi\":\"10.1109/WORDS.2005.18\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"In emerging e-commerce applications, time constrained information sharing between different systems is becoming a common phenomenon. A flexible and efficient mechanism is needed to support short term time-based sharing policies between transient partners. In particular, the interacting domains need to establish a time-based inter-domain access policy without violating the original time-based security policies of the individual systems. In this paper, we address this issue using the generalized temporal role based access control (GTRBAC) framework. The proposed mechanism involves a system processing an inter-domain access requirement specification to extend or restructure its local GTRBAC policy with proper temporal constraints to allow its external partner domain to access its resources. The transformed local GTRBAC policy facilitates the inter-domain accesses while still conforming to the original local policy requirements.\",\"PeriodicalId\":335355,\"journal\":{\"name\":\"10th IEEE International Workshop on Object-Oriented Real-Time Dependable Systems\",\"volume\":\"80 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2005-02-02\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"42\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"10th IEEE International Workshop on Object-Oriented Real-Time Dependable Systems\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/WORDS.2005.18\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"10th IEEE International Workshop on Object-Oriented Real-Time Dependable Systems","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/WORDS.2005.18","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 42

摘要

在新兴的电子商务应用中，不同系统之间有时间约束的信息共享正在成为一种普遍现象。需要一种灵活有效的机制来支持暂态伙伴之间基于时间的短期共享策略。特别是，相互作用的域需要在不违背各个系统原有的基于时间的安全策略的前提下，建立基于时间的域间访问策略。在本文中，我们使用基于广义临时角色的访问控制(GTRBAC)框架来解决这个问题。提出的机制涉及系统处理域间访问需求规范，以使用适当的时间约束扩展或重构其本地GTRBAC策略，以允许其外部合作伙伴域访问其资源。转换后的本地GTRBAC策略在满足原本地策略要求的同时，方便了域间访问。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

An RBAC framework for time constrained secure interoperation in multi-domain environments

In emerging e-commerce applications, time constrained information sharing between different systems is becoming a common phenomenon. A flexible and efficient mechanism is needed to support short term time-based sharing policies between transient partners. In particular, the interacting domains need to establish a time-based inter-domain access policy without violating the original time-based security policies of the individual systems. In this paper, we address this issue using the generalized temporal role based access control (GTRBAC) framework. The proposed mechanism involves a system processing an inter-domain access requirement specification to extend or restructure its local GTRBAC policy with proper temporal constraints to allow its external partner domain to access its resources. The transformed local GTRBAC policy facilitates the inter-domain accesses while still conforming to the original local policy requirements.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

10th IEEE International Workshop on Object-Oriented Real-Time Dependable Systems

自引率

0.00%

发文量