Institutional Repository
| separation of duty in trust-based collaboration | |
| Deng Lingli; He Yeping; Xu Ziyao | |
| 2009 | |
| Conference Name | 4th International Conference on Information Security and Cryptology (Inscript 2008) |
| Source | Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) |
| Pages | 370-388 |
| Conference Date | DEC 14-17, |
| Conference Place | Beijing, PEOPLES R CHINA |
| Indexed Type | 其他 |
| Publish Place | HEIDELBERGER PLATZ 3, D-14197 BERLIN, GERMANY |
| Publisher | INFORMATION SECURITY AND CRYPTOLOGY |
| ISSN | 0302-9743 |
| ISBN | 978-3-642-01439-0 |
| Department | Deng, Lingli; He, Yeping; Xu, Ziyao Chinese Acad Sci, Inst Software, Beijing 100190, Peoples R China. |
| English Abstract | When domains employing heterogeneous RBAC policies collaborate by crossdomain role-role mappings, their local Separation of Duty constraints face the risk of breaching. We present the requirements for constraint-secure interoperation, to prohibit implicit authorizations that break constraints from other member domains, and propose a trust-based framework to ensure constraint-secure interoperation. The framework introduces cross-domain migration and remote assurance of constraints between mutually trusted domains to maximize interoperability, while ensuring separation of constraints between distrusted domains to minimize security risk. Specifically, we use a bitmap-based history-recording mechanism for member domains to analyze the interplay among innerdomain role hierarchies, crossdomain mappings and constraints. Algorithms of a fully distributed implementation, security proofs and illustrative usage cases for the proposed solution are provided. |
| Keyword | Secure Collaboration |
| Sponsorship | Chinese Assoc Cryptol Res, State Key Lab Informat Secur, Inst Software, Grad Univ Chinese Acad Sci, Natl Nat Sci Fdn China |
| Language | 英语 |
| Content Type | 会议论文 |
| URI | http://ir.iscas.ac.cn/handle/311060/8366 |
| Collection | 基础软件国家工程研究中心 |
| Recommended Citation GB/T 7714 | Deng Lingli,He Yeping,Xu Ziyao. separation of duty in trust-based collaboration[C]. HEIDELBERGER PLATZ 3, D-14197 BERLIN, GERMANY:INFORMATION SECURITY AND CRYPTOLOGY,2009:370-388. |
| Files in This Item: | ||||||
| File Name/Size | DocType | Version | Access | License | ||
| separation of duty i(401KB) | 开放获取 | -- | Application Full Text | |||
Items in the repository are protected by copyright, with all rights reserved, unless otherwise indicated.
Edit Comment