Title :
An Efficient Algorithm of Role Mapping across Security Domains in Data-Sharing Environments
Author :
Xiaoqing, Wang ; Tianyang, Gu ; Yong, Guo ; Yanxing, Zheng ; Jianjian, Zong
Author_Institution :
Dept. of Comput. Sci. & Technol., Tsinghua Univ., Beijing
Abstract :
There are many distributed, autonomous, heterogeneous and dynamic data sources in data sharing environment. In order to achieve the goal of global data sharing without compromising the security of local domain respectively, it is necessary to establish an access control mechanism to satisfy the security need of data sharing across multi-domain. In this paper, a criterion based algorithm for role mapping across multi-domain is proposed. The algorithm not only resolves the conflicts of cyclic inheritance and separation of duties, but also makes the establishment of role mapping more efficiently by preserving the historical information of role mapping paths established successfully before. Evaluation by access instances shows that the algorithm meets the demands of access control in multi-domains and scales very well.
Keywords :
authorisation; distributed processing; inheritance; access control mechanism; criterion based algorithm; cyclic inheritance; data sources; data-sharing environments; global data sharing; role mapping paths; security domains; Access control; Computer security; Data engineering; Data security; Distributed computing; Environmental management; Feedback; Information management; Information security; Systems engineering and theory; RBAC; data sharing; role mapping across multi-domains; security domain;
Conference_Titel :
Web-Age Information Management, 2008. WAIM '08. The Ninth International Conference on
Conference_Location :
Zhangjiajie Hunan
Print_ISBN :
978-0-7695-3185-4
Electronic_ISBN :
978-0-7695-3185-4
DOI :
10.1109/WAIM.2008.73
