Privacy protection for RBAC in service oriented architecture

Author

Yu Ye ; Cungang Yang

Author_Institution

Dept. of Electr. & Comput. Eng., Ryerson Univ., Toronto, ON, Canada

fYear

2013

fDate

5-8 May 2013

Firstpage

1

Lastpage

6

Abstract

Service Oriented Architecture (SOA) changes the way of conducting business by opening their services to the larger business world over the networks. However, the “open” and “interoperable” properties of SOA make privacy a sensitive security issue. In SOA, service providers (SPs) limit permission of access to specific authorized Access Requestors (ARs). SPs need to verify ARs´ identity information, but ARs may not willing to disclose their privacy to unknown SPs in an open system. To solve this conflict in SOA environment, we propose privacy preserving protocols for rolebased access control (RBAC) in the SOA environment. The security analysis demonstrates that our protocols are privacy protected.

Keywords

authorisation; cryptographic protocols; data privacy; open systems; service-oriented architecture; AR identity information identification; RBAC; SOA environment; SP; authorized access requestors; open system; privacy preserving protocols; privacy protection; role based access control; security analysis; service oriented architecture; service providers; Access control; Cryptography; Privacy; Protocols; Semiconductor optical amplifiers; Service-oriented architecture; Privacy Protection; Role-based Access Control; Service Oriented Architecture; XACML;

fLanguage

English

Publisher

ieee

Conference_Titel

Electrical and Computer Engineering (CCECE), 2013 26th Annual IEEE Canadian Conference on

Conference_Location

Regina, SK

ISSN

0840-7789

Print_ISBN

978-1-4799-0031-2

Electronic_ISBN

0840-7789

Type

conf

DOI

10.1109/CCECE.2013.6567854

Filename

6567854