Inconsistency detection of authorization policies in distributed component environment

Chang Joo Moon; Hoh Peter In

doi:10.1007/978-3-540-31815-6_4

Inconsistency detection of authorization policies in distributed component environment

Chang Joo Moon, Hoh Peter In

Department of Computer Science and Engineering

Research output: Contribution to journal › Conference article › peer-review

2 Citations (Scopus)

Abstract

In distributed component environment, a Role-Based Access Control (RBAC) server manages all authorization policies of components in the same domains whereas the components are distributed to an application server on a network with their authorization policies. It is necessary to detect inconsistency between the authorization policies of the RBAC server and the distributed components to guarantee the authorization policy integrity while system configuration and policies are changing. In this paper, an inconsistency detection method between the two authorization policies is proposed. Conditions of guaranteeing consistency are investigated to detect the inconsistencies and validated in a case study.

Original language	English
Pages (from-to)	39-50
Number of pages	12
Journal	Lecture Notes in Computer Science
Volume	3325
DOIs	https://doi.org/10.1007/978-3-540-31815-6_4
Publication status	Published - 2005
Event	5th International Workshop on Information Security Applications, WISA 2004 - Jeju Island, Korea, Republic of Duration: 2004 Aug 23 → 2004 Aug 25

ASJC Scopus subject areas

Theoretical Computer Science
Computer Science(all)

Access to Document

10.1007/978-3-540-31815-6_4

Cite this

@article{3add4b9da931429295562775b94c63f8,

title = "Inconsistency detection of authorization policies in distributed component environment",

abstract = "In distributed component environment, a Role-Based Access Control (RBAC) server manages all authorization policies of components in the same domains whereas the components are distributed to an application server on a network with their authorization policies. It is necessary to detect inconsistency between the authorization policies of the RBAC server and the distributed components to guarantee the authorization policy integrity while system configuration and policies are changing. In this paper, an inconsistency detection method between the two authorization policies is proposed. Conditions of guaranteeing consistency are investigated to detect the inconsistencies and validated in a case study.",

author = "Moon, {Chang Joo} and In, {Hoh Peter}",

year = "2005",

doi = "10.1007/978-3-540-31815-6_4",

language = "English",

volume = "3325",

pages = "39--50",

journal = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

issn = "0302-9743",

publisher = "Springer Verlag",

note = "5th International Workshop on Information Security Applications, WISA 2004 ; Conference date: 23-08-2004 Through 25-08-2004",

}

TY - JOUR

T1 - Inconsistency detection of authorization policies in distributed component environment

AU - Moon, Chang Joo

AU - In, Hoh Peter

PY - 2005

Y1 - 2005

N2 - In distributed component environment, a Role-Based Access Control (RBAC) server manages all authorization policies of components in the same domains whereas the components are distributed to an application server on a network with their authorization policies. It is necessary to detect inconsistency between the authorization policies of the RBAC server and the distributed components to guarantee the authorization policy integrity while system configuration and policies are changing. In this paper, an inconsistency detection method between the two authorization policies is proposed. Conditions of guaranteeing consistency are investigated to detect the inconsistencies and validated in a case study.

AB - In distributed component environment, a Role-Based Access Control (RBAC) server manages all authorization policies of components in the same domains whereas the components are distributed to an application server on a network with their authorization policies. It is necessary to detect inconsistency between the authorization policies of the RBAC server and the distributed components to guarantee the authorization policy integrity while system configuration and policies are changing. In this paper, an inconsistency detection method between the two authorization policies is proposed. Conditions of guaranteeing consistency are investigated to detect the inconsistencies and validated in a case study.

UR - http://www.scopus.com/inward/record.url?scp=23944432367&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=23944432367&partnerID=8YFLogxK

U2 - 10.1007/978-3-540-31815-6_4

DO - 10.1007/978-3-540-31815-6_4

M3 - Conference article

AN - SCOPUS:23944432367

VL - 3325

SP - 39

EP - 50

JO - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

JF - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SN - 0302-9743

T2 - 5th International Workshop on Information Security Applications, WISA 2004

Y2 - 23 August 2004 through 25 August 2004

ER -

Inconsistency detection of authorization policies in distributed component environment

Abstract

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this