MultiLevel-OrBAC: Multi-Level Integrity management in organization based access control framework

2012 ◽  
Author(s):  
Amine Baina ◽  
Youssef Laarouchi
Keyword(s):  
Access Control ◽  
Control Framework ◽  
Integrity Management ◽  
Multi Level ◽  
Organization Based Access Control

PolyOrBAC

2011 ◽  
pp. 901-923 ◽  
Author(s):  
Anas Abou El Kalam ◽  
Yves Deswarte
Keyword(s):  
Web Services ◽  
Access Control ◽  
Web Service ◽  
Service Access ◽  
Control Mechanisms ◽  
Model Checker ◽  
Control Framework ◽  
The One ◽  
Organization Based Access Control ◽  
The Web

With the emergence of Web Services-based collaborative systems, new issues arise, in particular those related to security. In this context, Web Service access control should be studied, specified and enforced. This work proposes a new access control framework for Inter-Organizational Web Services: “PolyOr- BAC”. On the one hand, the authors extend OrBAC (Organization-Based Access Control Model) to specify rules for intra- as well as inter-organization access control; on the other hand, they enforce these rules by applying access control mechanisms dedicated to Web Services. Furthermore, the authors propose a runtime model checker for the interactions between collaborating organizations, to verify their compliance with previously signed contracts. In this respect, not only their security framework handles secure local and remote accesses, but also deals with competition and mutual suspicion between organizations, controls the Web Service workflows and audits the different interactions. In particular, every deviation from the signed contracts triggers an alarm, the concerned parties are notified, and audits can be used as evidence for a judge to sanction the party responsible for the deviation.

PolyOrBAC

2011 ◽  
pp. 537-557
Author(s):  
Anas Abou El Kalam ◽  
Yves Deswarte
Keyword(s):  
Web Services ◽  
Access Control ◽  
Web Service ◽  
Service Access ◽  
Control Mechanisms ◽  
Model Checker ◽  
Control Framework ◽  
The One ◽  
Organization Based Access Control ◽  
The Web

With the emergence of Web Services-based collaborative systems, new issues arise, in particular those related to security. In this context, Web Service access control should be studied, specified and enforced. This work proposes a new access control framework for Inter-Organizational Web Services: “PolyOr- BAC”. On the one hand, the authors extend OrBAC (Organization-Based Access Control Model) to specify rules for intra- as well as inter-organization access control; on the other hand, they enforce these rules by applying access control mechanisms dedicated to Web Services. Furthermore, the authors propose a runtime model checker for the interactions between collaborating organizations, to verify their compliance with previously signed contracts. In this respect, not only their security framework handles secure local and remote accesses, but also deals with competition and mutual suspicion between organizations, controls the Web Service workflows and audits the different interactions. In particular, every deviation from the signed contracts triggers an alarm, the concerned parties are notified, and audits can be used as evidence for a judge to sanction the party responsible for the deviation.

Static Analysis Based Correctness Verification for Mandatory Access Control Framework

2009 ◽  
Vol 32 (4) ◽  
pp. 730-739 ◽  
Author(s):  
Xin-Song WU ◽  
Zhou-Yi ZHOU ◽  
Ye-Ping HE ◽  
Hong-Liang LIANG ◽  
Chun-Yang YUAN
Keyword(s):  
Access Control ◽  
Static Analysis ◽  
Mandatory Access Control ◽  
Control Framework

BC-BLPM: A multi-level security access control model based on blockchain technology

2021 ◽  
Vol 18 (2) ◽  
pp. 110-135
Author(s):  
Xiang Yu ◽  
Zhangxiang Shu ◽  
Qiang Li ◽  
Jun Huang
Keyword(s):  
Access Control ◽  
Control Model ◽  
Access Control Model ◽  
Model Based ◽  
Blockchain Technology ◽  
Multi Level
Sign in / Sign up

Export Citation Format

Share Document