论文信息 - POLICY INCONSISTENCY DETECTION BASED ON RBAC MODEL IN CROSS-ORGANIZATIONAL COLLABORATION

POLICY INCONSISTENCY DETECTION BASED ON RBAC MODEL IN CROSS-ORGANIZATIONAL COLLABORATION

Policy integration and conflict resolutions among various organizations still remain a major challenge. Moreover, policy inconsistency detection approach with logical reasoning techniques which considers integration requirements from collaboration parties has not been well studied. In this paper, we proposed a model to detect inconsistencies based on role-based access control (RBAC) that considers role hierarchy (RH) and temporal and spatial constraints. A model to prune and collect only the required policies based on access control requirements from different organizations is designed. Policy inconsistency detection should be enhanced with logical-based analysis in order to develop security policy integration. We believe this work could provide manner to filter a large amount of unrelated policies and only return potential collaboration policies for conflict resolution.

Hamidah Ibrahim | Nur Izura Udzir | Fatimah Sidi | Kuang Teo Poh

[1] Feng Huang,et al. A DL-based method for access control policy conflict detecting , 2009, Internetware.

[2] Jianling Sun,et al. Security Policy Management for Systems Employing Role Based Access Control Model , 2009 .

[3] Elisa Bertino,et al. XACML Policy Integration Algorithms , 2008, TSEC.

[4] Jian Yang,et al. Authorization Control in Collaborative Healthcare Systems , 2009, J. Theor. Appl. Electron. Commer. Res..

[5] Jorge Lobo,et al. An approach to evaluate policy similarity , 2007, SACMAT '07.

[6] Jorge Lobo,et al. Analysis of privacy and security policies , 2009, IBM J. Res. Dev..

[7] Gang Yin,et al. Proceedings of the Fourth Asia-Pacific Symposium on Internetware, Internetware 2012, QingDao, China, October 30-31, 2012 , 2012, Internetware.

[8] Stephen S. Yau,et al. Security Policy Integration and Conflict Reconciliation for Collaborations among Organizations in Ubiquitous Computing Environments , 2008, UIC.

[9] Jong Hyuk Park,et al. PIS-CC RBAC: Patient Information Service based on CC-RBAC in Next Generation Hospital considering Ubiquitous Intelligent Environment , 2007, 2007 International Conference on Multimedia and Ubiquitous Engineering (MUE'07).

[10] Richard E. Newman,et al. STRBAC - An approach towards spatio-temporal role-based access control , 2006, Communication, Network, and Information Security.