Flexible secure inter-domain interoperability through attribute conversion |
| |
Authors: | Carles Martínez-García [Author Vitae] Guillermo Navarro-Arribas [Author Vitae] Simon N Foley [Author Vitae] |
| |
Affiliation: | a Department of Information and Communications Engineering (dEIC), Universitat Autònoma de Barcelona, 08193 Bellaterra, Catalonia, Spain b IIIA, Institut d’Investigació en Intel.ligència Artificial - CSIC, Consejo Superior de Investigaciones Científicas, Campus UAB s/n, 08193 Bellaterra, Catalonia, Spain c Department of Computer Science, University College Cork, Ireland |
| |
Abstract: | The access control policy of an application that is composed of interoperating components/services is defined in terms of the access control policies enforced by the respective services. These individual access control policies are heterogenous in the sense that the services may be independently developed and managed and it is not practical to assume that all policies are defined with respect to some uniform domain vocabulary of policy attributes. A framework is described that provides a domain mapping for heterogenous policies. A fuzzy-based conversion mechanism determines the degree to which an access control attribute of one (service) policy may safely interoperate with an access control attribute of another (service) policy. The approach is scalable in the sense that it is not necessary to a priori specify every pairwise policy interoperation relationship, rather, where obvious interpretations exist then policy relationships are specified, while other relationships are inferred using the fuzzy mechanism. |
| |
Keywords: | Access control Interoperability Attribute conversion Flexibility |
本文献已被 ScienceDirect 等数据库收录! |
|