An attribute and role based access control model for service-oriented environment

Author

Wei, Yonghe ; Shi, Chunjing ; Shao, Weiping

Author_Institution

R&D Center of CAD/CAM Technol., Shenyang Ligong Univ., Shenyang, China

fYear

2010

fDate

26-28 May 2010

Firstpage

4451

Lastpage

4455

Abstract

Based on the analysis of the access control requirements for services, this paper presents an attribute and role based access control model for services. We have described these components in detail and outlined their interactions. The proposed model introduces the notions of business role and service role, defines an automatically produces service role method based on attribute conditions to assign users to service roles, unifies the access control for web services and data resources involved. Finally, we give an access control algorithm for services. This model can provide fine-grained, supporting composite service access control and Mechanism-independent access control policy.

Keywords

Web services; authorisation; software architecture; Web service; access control requirement; attribute condition; business role; data resources; mechanism-independent access control policy; role based access control; service access control; service oriented architecture; service role; service-oriented environment; Access control; CADCAM; Computer aided manufacturing; Data security; Distributed computing; Electronic mail; Information security; Permission; Research and development; Service oriented architecture; Access Control; Attribute; Role; Service-Oriented Architecture;

fLanguage

English

Publisher

ieee

Conference_Titel

Control and Decision Conference (CCDC), 2010 Chinese

Conference_Location

Xuzhou

Print_ISBN

978-1-4244-5181-4

Electronic_ISBN

978-1-4244-5182-1

Type

conf

DOI

10.1109/CCDC.2010.5498344

Filename

5498344