Link to the University of Pittsburgh Homepage
Link to the University Library System Homepage Link to the Contact Us Form
D-Scholarship @ Pitt Banner and Links to Homepage

A secure, constraint-aware role-based access control interoperation framework

Baracaldo, N and Masoumzadeh, A and Joshi, J (2011) A secure, constraint-aware role-based access control interoperation framework. In: UNSPECIFIED.

[img]
Preview
 PDF
Available under License : See the attached license file.
Download (1MB) | Preview
[img] Plain Text (licence)
Available under License : See the attached license file.
Download (1kB)

Abstract

With the growing needs for and the benefits of sharing resources and information among different organizations, an interoperation framework that automatically integrates policies to facilitate such cross-domain sharing in a secure way is becoming increasingly important. To avoid security breaches, such policies must enforce the policy constraints of the individual domains. Such constraints may include temporal constraints that limit the times when the users can access the resources, and separation of duty (SoD) constraints. Existing interoperation solutions do not address such cross-domain temporal access control and SoDs requirements. In this paper, we propose a role-based framework to facilitate secure interoperation among multiple domains by ensuring the enforcement of temporal and SoD constraints of individual domains. To support interoperation, we do not modify the internal policies, as most of the current approaches do. We present experimental results to demonstrate our proposed framework is effective and easily realizable. © 2011 IEEE.

Share

Citation/Export:
Social Networking:
Share |

Details

Item Type: Conference or Workshop Item (UNSPECIFIED)
Status: Published
Creators/Authors:
CreatorsEmailPitt UsernameORCID
Baracaldo, N
Masoumzadeh, A
Joshi, Jjjoshi@pitt.eduJJOSHI0000-0003-4519-9802
Date: 17 November 2011
Date Type: Publication
Access Restriction: No restriction; Release the ETD for access worldwide immediately.
Journal or Publication Title: Proceedings - 2011 5th International Conference on Network and System Security, NSS 2011
Page Range: 200 - 207
Event Type: Conference
DOI or Unique Handle: 10.1109/icnss.2011.6060001
Institution: University of Pittsburgh
Schools and Programs: School of Information Sciences > Information Science
Refereed: Yes
ISBN: 9781457704598
Date Deposited: 08 Aug 2012 15:37
Last Modified: 01 May 2020 12:55
URI: http://d-scholarship.pitt.edu/id/eprint/13460

Metrics

Monthly Views for the past 3 years

Plum Analytics

Altmetric.com

Actions (login required)

View Item View Item