Authorization and Interoperability in Access Control Systems

A robust policy management framework is necessary to provide strong authorization in access control systems. This study focuses on addressing the authorization and interoperability challenges in access control systems in a collaborative environment. The main purpose of this work is to harmonize the various user identities (roles or attributes) issued by different identity providers, translate them to the right security levels, and grant access to the appropriate resources. This is accomplished using internal broker policy mapping. The broker is a dependable security solution that is managed by the service provider. It assigns appropriate security levels to users while also controlling resource access. The user is recognized using their specified identity, which is further classified based on the possession of identity assurance profiles, credential assurance, or the type of authentication method used. The service provider and the broker reach an agreement on organizational policy and grant authorized users access to the services.