Enforcing Separation of Duty in Ad Hoc Collaboration

By collaboration, domains share resources effectively. To maintain security properties of individual domains during collaboration is a key issue. When domains employing heterogeneous RBAC policies collaborate by crossdomain role-role mappings, their local SMER constraints may be violated. However, the secure interoperation studied so far does not deal with this threat. We presents the requirement for constraint secure interoperation, prohibiting implicit authorizations that break constraints of other member domain. We propose a framework for crossdomain constraint enforcement in dynamic mediator-free ad hoc collaboration. By introducing crossdomain migration of MD-SMERs, the framework ensures the global security in terms of SMERs from individual domains. Specifically, we introduce a bitmap-based history-recording mechanism for collaborating domains to analyze the interplay among innerdomain role hierarchies, crossdomain role-role mappings, and SMER constraints. Algorithms of a fully distributed implementation for the framework and its security proofs are given.