Web服务的基于上下文的基于角色的访问控制模型

IEEE International Conference on e-Business Engineering (ICEBE'05) Pub Date : 2005-10-12 DOI:10.1109/ICEBE.2005.1

Shen Haibo, Hong Fan

{"title":"Web服务的基于上下文的基于角色的访问控制模型","authors":"Shen Haibo, Hong Fan","doi":"10.1109/ICEBE.2005.1","DOIUrl":null,"url":null,"abstract":"A key challenge in Web services security is the design of effective access control schemes that can adequately meet the unique security challenges posed by the Web services paradigm. Despite the recent advances in Web based access control approaches applicable to Web services, there remain issues that impede the development of effective access control models for Web services environment. Amongst them are the lacks of context-aware models for access control, and do not deal with composite Web service. In this paper, we present a context-aware role-based access control model (CGRBAC) to addresses these issues. The proposed approach introduces global roles which are used in the mapping to local roles of other services providers. We outline the configuration mechanism needed to apply our model to the Web services environment","PeriodicalId":118472,"journal":{"name":"IEEE International Conference on e-Business Engineering (ICEBE'05)","volume":"20 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2005-10-12","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"25","resultStr":"{\"title\":\"A context-aware role-based access control model for Web services\",\"authors\":\"Shen Haibo, Hong Fan\",\"doi\":\"10.1109/ICEBE.2005.1\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"A key challenge in Web services security is the design of effective access control schemes that can adequately meet the unique security challenges posed by the Web services paradigm. Despite the recent advances in Web based access control approaches applicable to Web services, there remain issues that impede the development of effective access control models for Web services environment. Amongst them are the lacks of context-aware models for access control, and do not deal with composite Web service. In this paper, we present a context-aware role-based access control model (CGRBAC) to addresses these issues. The proposed approach introduces global roles which are used in the mapping to local roles of other services providers. We outline the configuration mechanism needed to apply our model to the Web services environment\",\"PeriodicalId\":118472,\"journal\":{\"name\":\"IEEE International Conference on e-Business Engineering (ICEBE'05)\",\"volume\":\"20 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2005-10-12\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"25\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"IEEE International Conference on e-Business Engineering (ICEBE'05)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICEBE.2005.1\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"IEEE International Conference on e-Business Engineering (ICEBE'05)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICEBE.2005.1","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 25

摘要

Web服务安全性中的一个关键挑战是设计有效的访问控制方案，以充分满足Web服务范式带来的独特安全性挑战。尽管最近在应用于Web服务的基于Web的访问控制方法方面取得了进展，但是仍然存在一些问题阻碍了针对Web服务环境开发有效的访问控制模型。其中包括缺乏用于访问控制的上下文感知模型，并且不处理复合Web服务。在本文中，我们提出了一个上下文感知的基于角色的访问控制模型(CGRBAC)来解决这些问题。该方法引入了全局角色，用于映射到其他服务提供者的本地角色。我们概述了将模型应用于Web服务环境所需的配置机制

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

A context-aware role-based access control model for Web services

A key challenge in Web services security is the design of effective access control schemes that can adequately meet the unique security challenges posed by the Web services paradigm. Despite the recent advances in Web based access control approaches applicable to Web services, there remain issues that impede the development of effective access control models for Web services environment. Amongst them are the lacks of context-aware models for access control, and do not deal with composite Web service. In this paper, we present a context-aware role-based access control model (CGRBAC) to addresses these issues. The proposed approach introduces global roles which are used in the mapping to local roles of other services providers. We outline the configuration mechanism needed to apply our model to the Web services environment

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

IEEE International Conference on e-Business Engineering (ICEBE'05)

自引率

0.00%

发文量