Policy based Role Centric Attribute Based Access Control model Policy RC-ABAC

Varadharajan, Vijay; Amid, Alon; Rai, Sudhanshu

doi:10.1109/coconet.2015.7411221

Cited by 9 publications

(7 citation statements)

References 8 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…[38][39][40][41][42][43][44] In order to add more granularity and flexibility to RBAC model, many researchers have developed RBAC model by adding attribute (user attributes, context attributes, and resource attributes) and policy rules (object's access policy). [38][39][40] As RBAC is one of the most popular models due to its robust access control facilities and ease of management few researchers attempted to develop RBAC metamodel that can be integrated with existing EA modeling languages such as ArchiMate, DEMO, and BPMN. The proposed metamodel in Reference 45 is an extension of ArchiMate which can represent a single access control mechanism or a combination of different access control mechanisms within a single IT system, or across an entire enterprise.…”

Section: Related Workmentioning

confidence: 99%

“…However, kernel theories might be used for evaluation purpose as well. 50 The kernel theories used in this research are enterprise information security architectures (EISA) 53 Access Control constraints, 54,55 RBAC policies, 53,54 existing RBAC models, [38][39][40][41] Graph theory-based modeling approach. 49 These kernel theories are used to guide the design of the proposed ACM metamodel for our industry partner.…”

Section: Kernel Theorymentioning

confidence: 99%

“…19,20 Then many researchers and industry practitioners modified standard RBAC concepts by adding new concepts like context, policies, time, dynamic role assignment based on organization requirements. [38][39][40][41]71 Our proposed metamodel is based on RBAC0 with the ability of modeling context dependent policies.…”

Section: Rbac Modelsmentioning

confidence: 99%

See 2 more Smart Citations

Developing an access control management metamodel for secure digital enterprise architecture modeling

Nahar

Gill

Roach³

2021

Security and Privacy

View full text Add to dashboard Cite

There is an increasing interest in embedding the security in the design of digital enterprise architecture (EA) modeling platform to secure the digital assets.Access control management (ACM) is one of the key aspects of a secure digital enterprise architecture modeling platform design. Typical enterprise architecture modeling approaches mainly focus on the modeling of business, information, and technology elements. This draws our attention to this important question: how to model ACM for a secure digital EA modeling platform to ensure secure access to digital assets? This article aims to address this important research question in collaboration with our industry partner and developed an ontology-based ACM metamodel that can be used by enterprises to model their ACM for a particular situation. This research has been conducted using the well-known action-design research (ADR) method to develop and evaluate the ACM metamodel for the secure digital EA modeling platform.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Kernel Theorymentioning

confidence: 99%

See 1 more Smart Citation

Developing an access control management metamodel for secure digital enterprise architecture modeling

Nahar

Gill

Roach³

2021

Security and Privacy

View full text Add to dashboard Cite

show abstract

“…Sejauh ini penerapan ABAC dan XACML sebagai sebuah sistem untuk akses terhadap resource digital masih sangat terbatas Penerapan ABAC dan XACML sebagai sebuah sistem untuk akses terhadap resource digital masih sangat terbatas. Sejumlah penelitian yang ada antara lain pernah dilakukan oleh Varadharajan, (2015). Namun pada penelitian tersebut model yang diterapkan adalah model Next Generation Access Control (NGAC) dengan implementasi pada XML serta penelitian selanjutnya model yang diterapkan adalah model Role Based Access Control (RBAC) dengan implementasi pada Ciphertext-Policy Attribute-Based Encryption (CP-ABE).…”

Section: Pendahuluanunclassified

Eksplorasi ABAC dan XACML untuk Design Access Control pada Resource Digital

Natsir¹,

Riadi²,

Prayudi³

2019

JTIIK

View full text Add to dashboard Cite

Resource digital memerlukan sebuah mekanisme untuk mengatur policy terhadap kontrol untuk mendapatkan hak akes ke dalam suatu sistem. Akses kontrol lebih fleksibel dibanding dengan pendekatan otorisasi, autentikasi ataupun verifikasi yang sangat sederhana. Mekanisme access control policy dengan pendekatan atribut diyakini sebagai solusi adaptif yaitu ABAC (Attribute Based Access Control) dengan implementasi model XACML (Extensible Access Control Modelling Language). Desain policy ABAC ini disajikan dengan atribut-atribut dari salah satu studi kasus resource digital dengan sistem e-Library. e-Library merupakan salah satu resource digital dimana proses autentikasinya belum dimodelkan dengan atrubut subjek yang ada. Penelitian ini diawali dari identifikasi atribut dari rule, pemodelan ABAC resource digital, implementasi XACML, simulasi sistem dan analisis sistem. Hasil dari pengujian akses kontrol menggunakan ALFA (Axiomatics Language for Authorization) untuk pemberian kinerja akses kontrol terhadap resource digital. Hasil analisis dengan pendekatan ABAC dengan model XACML ini menyajikan suatu keamanan sistem dengan model akses kontrol berbasis atribut dari policy statement untuk menjadi solusi model akses kontrol yang dibuat sebelumnya dan mendukung model akses kontrol yang relevan untuk resource digital AbstractDigital resources require a mechanism to regulate policy against controls to get access rights to a system. Access control is more flexible than the very simple approach of authorization, authentication or verification. The access control policy with the attribute approach is believed to be an adaptive solution, namely ABAC (Attribute Based Access Control) with the implementation of the XACML (Extensible Access Control Modeling Language) model. This ABAC policy design is presented with attributes from one of the digital resource case studies with the e-Library system. e-Library is one of the digital resources where the authentication process has not been modeled with the existing subject matter. This study begins with the identification of the attributes of the rule, digital ABAC resource modeling, XACML implementation, system simulation and system analysis. The results of testing access control using ALFA (Axiomatics Language for Authorization) to provide performance control access to digital resources. The results of the analysis using the ABAC approach with the XACML model present a system security with attribute-based access control models from policy statements to be a solution to the previously created access control model and support the access control model relevant for digital resources

show abstract

“…It is difficult to analyze and change users' permissions. What's more, it does not consider how to isolate tenants effectively, access across tenants, and cooperate between tenants; The existing access control scheme applied in industrial control system [11]and other scenes [12,13,14], which is based on RBAC and ABAC, does not take the problem of cross-tenant access into account. Therefore, it isn't suitable for multitenant cloud environment; In the existing role-based trust model, it isn't related to attribute [15], [16], and can not solve the trust problem among tenants when the user access another tenant's resource [8].…”

Section: Introductionmentioning

confidence: 99%

Access Control Mechanism Based on Role, Attribute and Trust in Multi-tenant Cloud Environment

2017

Proceedings of 2017 the 7th International Workshop on Computer Science and Engineering

View full text Add to dashboard Cite

In the light of the problem that current access control schemes in multi-tenant cloud envioronment are difficult to adapt to different tenants' requirements of fine-grained division of permissions and can't solve the trust problem among tenants when the user access another tenant's resource. In this paper, we propose an access control mechanism suitable for multi-tenant cloud environment, which combines RBAC, ABAC and trust model. The access control mechanism based on role, attribute and trust meets the needs of cross-tenant access and fine-grained division of permissions. It is easy to check user's permission and solves trust problem between tenants when users access across tenants, improving the security of tenant's data and reducing the complexity of implementation. It is a more fine-grained access control scheme suitable for dynamic cloud environment.

show abstract

Policy based Role Centric Attribute Based Access Control model Policy RC-ABAC

Cited by 9 publications

References 8 publications

Developing an access control management metamodel for secure digital enterprise architecture modeling

Developing an access control management metamodel for secure digital enterprise architecture modeling

Eksplorasi ABAC dan XACML untuk Design Access Control pada Resource Digital

Access Control Mechanism Based on Role, Attribute and Trust in Multi-tenant Cloud Environment

Contact Info

Product

Resources

About