Title :
Extending the CIM-SPL policy language with RBAC for distributed management systems in the WBEM infrastructure
Author :
Pan, Li ; Lob, Jorge ; Calo, Seraphin
Author_Institution :
Dept. of Electron. Eng., Shanghai Jiao Tong Univ., Shanghai, China
Abstract :
In spite of the large effort behind the development of the WBEM and CIM standards for the management of distributed systems, there has been very little work addressing security in those standards. In this paper we present a role-based access control (RBAC) policy language to render fine-grained access control policies for WBEM and CIM. The language is an extension of CIM-SPL, a preliminary DMTF policy language standard. The CIM-SPL RBAC extension fully complies with the WBEM standards. Access control policies can be specified for CIM object constructs according to the standard NIST RBAC model as well as with an extended model adapted for CIM. This extension provides a policy-based RBAC mechanism in the WBEM infrastructure.
Keywords :
Internet; authorisation; computer integrated manufacturing; high level languages; CIM-SPL; RBAC; WBEM infrastructure; Web based enterprise management; distributed management systems; policy language; role-based access control; Access control; Authorization; Computer integrated manufacturing; Engineering management; NIST; Research and development management; Resource management; Security; Standards development; Technology management;
Conference_Titel :
Integrated Network Management, 2009. IM '09. IFIP/IEEE International Symposium on
Conference_Location :
Long Island, NY
Print_ISBN :
978-1-4244-3486-2
Electronic_ISBN :
978-1-4244-3487-9
DOI :
10.1109/INM.2009.5188803
