An Extended ACL for Solving Authorization Conflicts

Author

Li, Chisong ; Liao, Zhensong

Author_Institution

Sch. of Comput. Sci. & Technol., Huazhong Univ. of Sci. & Technol., Wuhan, China

Volume

1

fYear

2009

fDate

22-24 May 2009

Firstpage

30

Lastpage

34

Abstract

Authorization is an important means to endow the access requestors with different access rights according to their identities. In trust management and access control systems, authorization is used to ensure that legitimate users can access the required resources or accomplish the valid operations towards some resources. However, unlimited authorization transfer may lead to conflicts in access right. Explicit conflict and implicit conflict are two typical conflicts. When authorization conflicts happen, the access control system may involve in chaotic states and cannot provide natural services for the users. To figure out such a problem, a new approach for solving authorization conflicts is proposed. In the approach, an extended ACL is presented to carry the authorization information, and the authorization can be easily implemented by some simple functions. Thereto, a use case is given to show how the approach works, which illustrates that the approach is sound and reasonable.

Keywords

authorisation; access control systems; access requestors; access rights; authorization conflicts; authorization information; explicit conflict; implicit conflict; trust management; unlimited authorization transfer; Access control; Authorization; Chaos; Computer science; Computer security; Data structures; Electronic commerce; Permission; Resource management; Technology management; access control; authorization conflict; trust management;

fLanguage

English

Publisher

ieee

Conference_Titel

Electronic Commerce and Security, 2009. ISECS '09. Second International Symposium on

Conference_Location

Nanchang

Print_ISBN

978-0-7695-3643-9

Type

conf

DOI

10.1109/ISECS.2009.164

Filename

5209709