domRBAC: An access control model for modern collaborative systems

Gouglidis, Antonios; Mavridis, Ioannis

doi:10.1016/j.cose.2012.01.010

Cited by 37 publications

(26 citation statements)

References 13 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Through an example, we demonstrated the proposed methodology, which resulted in a critique of existing AC approaches in [3] and the development of a new AC model for collaborative systems (e.g. Cloud environments) in [18]. Furthermore, we referred to the application of a model checking approach proposed by NIST, which resulted in the verification of the principles of security and autonomy in our defined AC model.…”

Section: Discussionmentioning

confidence: 99%

“…Table 1 summarizes the evaluation of RBAC in the context of CC based on [3]. Therefore, after evaluating RBAC, we proceeded with the design of a new access control model entitled domRBAC [18] that is suitable for modern collaborative environments. Table 1 illustrates the evaluation of domRBAC compared to RBAC, where it is shown that domRBAC strengthens the RBAC approach in all layers.…”

Section: Fig 4 Operational Environmentmentioning

confidence: 99%

“…A new produced AC model entitled domRBAC [18] is evaluated in the context of CC. Also, selected requirements were verified in domRBAC using a model checking approach by NIST.…”

Section: Use Casementioning

confidence: 99%

See 2 more Smart Citations

A Methodology for the Development and Verification of Access Control Systems in Cloud Computing

Gouglidis

Mavridis

2013

IFIP Advances in Information and Communication Technology

Self Cite

View full text Add to dashboard Cite

Abstract. Cloud computing is an emergent technology that has generated significant interest in the marketplace and is forecasted for high growth. Moreover, Cloud computing has a great impact on different type of users from individual consumers and businesses to small and medium size (SMBs) and enterprise businesses. Although there are many benefits to adopting Cloud computing, there are significant barriers to adoption, viz. security and privacy. In this paper, we focus on carefully planning security aspects regarding access control of Cloud computing solutions before implementing them and, furthermore, on ensuring they satisfy particular organizational security requirements. Specifically, we propose a methodology for the development of access control systems. The methodology is capable of utilizing existing security requirements engineering approaches for the definition and evaluation of access control models, and verification of access control systems against organizational security requirements using techniques that are based on formal methods. A proof of concept example is provided that demonstrates the application of the proposed methodology on Cloud computing systems.

show abstract

Section: Discussionmentioning

confidence: 99%

Section: Fig 4 Operational Environmentmentioning

confidence: 99%

See 1 more Smart Citation

A Methodology for the Development and Verification of Access Control Systems in Cloud Computing

Gouglidis

Mavridis

2013

IFIP Advances in Information and Communication Technology

Self Cite

View full text Add to dashboard Cite

show abstract

“…But this model paid little attention to the security risk of privilege penetration, covert privilege promotion and role-associated conflict resulted from separation of duty constraint, role translation and domain shuttle. Then, lots of solutions were present based on IRBAC and its security [3,4] . These solutions didn't consider the security problem of covert privilege promotion and role-associated conflict, et al The domain concept is introduced to bind with role, privilege and other elements for inter-domain access control by Zan Yang [5].…”

Section: Introductionmentioning

confidence: 99%

Double-Tier Role and Organization-Based Cross-Domain Access Control Mechanism

Xiong

Chen

et al. 2014

2014 Seventh International Symposium on Computational Intelligence and Design

View full text Add to dashboard Cite

Aiming at the deficiencies of weak adaptability due to the singleness of the role establishment method, relatively high management complexity and the security problems such as covert role promotion and privilege penetration in the existing methods, a double-tier role and organization-based cross-domain access control mechanism is proposed. The double-tier role architecture of function role and task role resolves the problem that traditional concept of role couldn't cover the requirements of both organizational level and application level at the same time and meets the practical needs of role establishment with strong adaptability. A scalable double-tier role and organization-based access control model (DTR-OBAC) is put forward and defined formally based on the double-tier role architecture and organization. The concept of virtual sharing organization is introduced and treated as the common subordinate organization of participating domains. The cross-domain access control mechanism is present based on DTR-OBAC model and virtualsharing organization, to achieve security interoperation. The practicability and feasibility is verified with an example and the features are analyzed, indicating that the mechanism meets the principles of autonomy and security in interoperation.

show abstract

“…context or attributes, and creating a new access control model. [10] Following the role based access control [12] has developed an access control model, which extends role based access control for virtual organizations. Unfortunately this model does not cover business processes, workflows, and cloud computing.…”

Section: Processesmentioning

confidence: 99%

User specific privacy policies for collaborative BPaaS on the example of logistics

Schwarzbach

Glöckner

Schier

et al. 2016

Annals of Computer Science and Information Systems

View full text Add to dashboard Cite

Abstract-Today's business is more and more organized in collaborative networks. Although decision makers know the benefits of collaboration, they are afraid of losing control of their data, which is one of the main impediments for Cloud Computing. We propose a novel cloud based approach for collaboration in business processes with guaranteed control of the privacy of the data. The platform ensures the compliance with the companies' privacy policies and laws. The paper shows the definition of privacy policies and how they are converted into a well established access control language. An example helps to clarify the methods.

show abstract

domRBAC: An access control model for modern collaborative systems

Cited by 37 publications

References 13 publications

A Methodology for the Development and Verification of Access Control Systems in Cloud Computing

A Methodology for the Development and Verification of Access Control Systems in Cloud Computing

Double-Tier Role and Organization-Based Cross-Domain Access Control Mechanism

User specific privacy policies for collaborative BPaaS on the example of logistics

Contact Info

Product

Resources

About