Inconsistency detection of authorization policies in distributed component environment

Chang Joo Moon; Hoh Peter In

Inconsistency detection of authorization policies in distributed component environment

Chang Joo Moon, Hoh Peter In

Department of Computer Science and Engineering

Research output: Contribution to journal › Conference article

2 Citations (Scopus)

Abstract

In distributed component environment, a Role-Based Access Control (RBAC) server manages all authorization policies of components in the same domains whereas the components are distributed to an application server on a network with their authorization policies. It is necessary to detect inconsistency between the authorization policies of the RBAC server and the distributed components to guarantee the authorization policy integrity while system configuration and policies are changing. In this paper, an inconsistency detection method between the two authorization policies is proposed. Conditions of guaranteeing consistency are investigated to detect the inconsistencies and validated in a case study.

Original language	English
Pages (from-to)	39-50
Number of pages	12
Journal	Lecture Notes in Computer Science
Volume	3325
Publication status	Published - 2005 Sep 1
Event	5th International Workshop on Information Security Applications, WISA 2004 - Jeju Island, Korea, Republic of Duration: 2004 Aug 23 → 2004 Aug 25

ASJC Scopus subject areas

Theoretical Computer Science
Computer Science(all)

Access to Document

Cite this

Moon, C. J., & In, H. P. (2005). Inconsistency detection of authorization policies in distributed component environment. Lecture Notes in Computer Science, 3325, 39-50.

@article{3add4b9da931429295562775b94c63f8,

title = "Inconsistency detection of authorization policies in distributed component environment",

abstract = "In distributed component environment, a Role-Based Access Control (RBAC) server manages all authorization policies of components in the same domains whereas the components are distributed to an application server on a network with their authorization policies. It is necessary to detect inconsistency between the authorization policies of the RBAC server and the distributed components to guarantee the authorization policy integrity while system configuration and policies are changing. In this paper, an inconsistency detection method between the two authorization policies is proposed. Conditions of guaranteeing consistency are investigated to detect the inconsistencies and validated in a case study.",

author = "Moon, {Chang Joo} and In, {Hoh Peter}",

year = "2005",

month = sep,

day = "1",

language = "English",

volume = "3325",

pages = "39--50",

journal = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

issn = "0302-9743",

publisher = "Springer Verlag",

note = "5th International Workshop on Information Security Applications, WISA 2004 ; Conference date: 23-08-2004 Through 25-08-2004",

}

TY - JOUR

T1 - Inconsistency detection of authorization policies in distributed component environment

AU - Moon, Chang Joo

AU - In, Hoh Peter

PY - 2005/9/1

Y1 - 2005/9/1

N2 - In distributed component environment, a Role-Based Access Control (RBAC) server manages all authorization policies of components in the same domains whereas the components are distributed to an application server on a network with their authorization policies. It is necessary to detect inconsistency between the authorization policies of the RBAC server and the distributed components to guarantee the authorization policy integrity while system configuration and policies are changing. In this paper, an inconsistency detection method between the two authorization policies is proposed. Conditions of guaranteeing consistency are investigated to detect the inconsistencies and validated in a case study.

AB - In distributed component environment, a Role-Based Access Control (RBAC) server manages all authorization policies of components in the same domains whereas the components are distributed to an application server on a network with their authorization policies. It is necessary to detect inconsistency between the authorization policies of the RBAC server and the distributed components to guarantee the authorization policy integrity while system configuration and policies are changing. In this paper, an inconsistency detection method between the two authorization policies is proposed. Conditions of guaranteeing consistency are investigated to detect the inconsistencies and validated in a case study.

UR - http://www.scopus.com/inward/record.url?scp=23944432367&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=23944432367&partnerID=8YFLogxK

M3 - Conference article

AN - SCOPUS:23944432367

VL - 3325

SP - 39

EP - 50

JO - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

JF - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SN - 0302-9743

T2 - 5th International Workshop on Information Security Applications, WISA 2004

Y2 - 23 August 2004 through 25 August 2004

ER -