DocumentCode
2714636
Title
Integrating Attribute and Status Constraint into the RBAC Model for Access Control in Ubiquitous Systems
Author
Zou, Deqing ; Park, Jong Hyuk ; Kim, Tai-Hoon ; Chen, Xueguang
Author_Institution
Huazhong Univ. of Sci. & Technol., Huazhong
Volume
2
fYear
2007
fDate
6-8 Dec. 2007
Firstpage
71
Lastpage
75
Abstract
It now becomes a trend to implement the interconnections between resources as well as services in ubiquitous systems. Attribute-based authorization mechanisms, protocols and systems are gaining in popularity, such as SAML, XACML, Shibboleth, etc. However, their management efficiency could be further improved. The Role-based Access Control (RBAC) mechanism is widely accepted as a general mechanism for authorization management. However, RBAC is still not flexible enough to address various application scenarios in ubiquitous systems. We propose a new architecture for access control in ubiquitous systems that impose attribute and status constraints on the RBAC model, which can significantly enhance the generality and flexibility of authorization by integrating the advantages of RBAC and attributed- based access control models. Moreover, the state mechanism proposed in this architecture captures the states of the authorization elements so as to reflect the outcomes of the authorization control. Finally, we analyze the flexibility and generality of this architecture in ubiquitous systems.
Keywords
authorisation; ubiquitous computing; RBAC model; attribute constraint; authorization management; role based access control; status constraint; ubiquitous systems; Access control; Access protocols; Application software; Authorization; Computer science; Control system analysis; Grid computing; Markup languages; Permission; Pervasive computing;
fLanguage
English
Publisher
ieee
Conference_Titel
Future Generation Communication and Networking (FGCN 2007)
Conference_Location
Jeju
Print_ISBN
0-7695-3048-6
Type
conf
DOI
10.1109/FGCN.2007.152
Filename
4426206
Link To Document