论文信息 - A Scalable Parametric-RBAC Architecture for the Propagation of a Multi-modality, Multi-resource Informatics System

A Scalable Parametric-RBAC Architecture for the Propagation of a Multi-modality, Multi-resource Informatics System

We present a scalable architecture called X-MIMI for the propagation of MIMI (Multi-modality, Multi-resource, Informatics Infrastructure System) to the biomedical research community. MIMI is a web-based system for managing the latest instruments and resources used by clinical and translational investigators. To deploy MIMI broadly, X-MIMI utilizes a parametric Role-Based Access Control model to decentralize the management of user-role assignment, facilitating the deployment and system administration in a flexible manner that minimizes operational overhead. We use Formal Concept Analysis to specify the semantics of roles according to their permissions, resulting in a lattice hierarchy that dictates the cascades of RBAC authority. Additional components of the architecture are based on the Model-View-Controller pattern, implemented in Ruby-on-Rails. The X-MIMI architecture provides a uniform setup interface for centers and facilities, as well as a set of seamlessly integrated scientific and administrative functionalities in a Web 2.0 environment.

Guo-Qiang Zhang | Remo Mueller | Van Anh Tran

[1] L. Kantor,et al. NIH Roadmap for Medical Research , 2008, Alcohol research & health : the journal of the National Institute on Alcohol Abuse and Alcoholism.

[2] Akhil Kumar,et al. A fine-grained, controllable, user-to-user delegation method in RBAC , 2005, SACMAT '05.

[3] James F. Brinkley,et al. Issues in biomedical research data management and analysis: needs and barriers. , 2007, Journal of the American Medical Informatics Association : JAMIA.

[4] SauterPatrick,et al. A Model–View–Controller extension for pervasive multi-client user interfaces , 2005 .

[5] Guo-Qiang Zhang,et al. MIMI: Multimodality, Multiresource, Information Integration Environment for Biomedical Core Facilities , 2007, Journal of Digital Imaging.

[6] Günther Specht,et al. A Model–View–Controller extension for pervasive multi-client user interfaces , 2005, Personal and Ubiquitous Computing.

[7] Ravi S. Sandhu,et al. Role-Based Access Control Models , 1996, Computer.

[8] Joon S. Park,et al. A composite rbac approach for large, complex organizations , 2004, SACMAT '04.

[9] Guo-Qiang Zhang,et al. Towards "WYDIWYS" for MIMI using concept analysis , 2009, SAC '09.