A policy framework for access management in federated information sharing

被引:0
|
作者
Bhatti, R [1 ]
Bertino, E [1 ]
Ghafoor, A [1 ]
机构
[1] Purdue Univ, Sch Elect & Comp Engn, W Lafayette, IN 47907 USA
来源
Security Management, Integrity, and Internal Control in Information Systems | 2005年 / 193卷
关键词
federated systems; policy-based management; XML access control;
D O I
暂无
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
Current mechanisms for distributed access management are limited in their capabilities to provide federated information sharing while ensuring adequate levels of resource protection. This work presents a policy-based framework designed to address these limitations for access management in federated systems. In particular, it supports: (i) decentralized administration while preserving local autonomy, (ii) fine-grained access control while avoiding rule-explosion in the policy,(iii) credential federation through the use of interoperable protocols, with support for single sign on for federated users, (iv) specification and enforcement of semantic and contextual constraints to support integrity requirements and contractual obligations, and (v) usage control in resource provisioning through effective session management. The paper highlights the significance of our policy-based approach in comparison with related mechanisms. It also presents a system architecture of our implementation prototype.
引用
收藏
页码:95 / 120
页数:26
相关论文
共 50 条
  • [31] Establishment of the policy framework of knowledge management in the information society of China
    Liu, XF
    Proceedings of 2005 International Conference on Public Administration, 2005, : 619 - 622
  • [32] User Centric Access Control Policy Management Framework for Cloud Applications
    Ghafoor, Abdul
    Irum, Misbah
    Qaisar, Muhammad
    2013 2ND NATIONAL CONFERENCE ON INFORMATION ASSURANCE (NCIA), 2013, : 135 - 140
  • [33] Analysis of Identity and Access Management Alternatives for a Multinational Information-sharing Environment
    Calhoun, Zach
    Maribojoc, Patrick
    Selzer, Ned
    Procopi, Leah
    Bezzo, Nicola
    Fleming, Cody
    2017 SYSTEMS AND INFORMATION ENGINEERING DESIGN SYMPOSIUM (SIEDS), 2017, : 208 - 213
  • [34] A federated information system framework for vertical integration
    El Kalach, Fadi
    Solanki, Jitendra
    Todkar, Anand
    Manufacturing Letters, 2024, 41 : 1192 - 1199
  • [35] A Federated Information System Framework for Vertical Integration
    El Kalach, Fadi
    Solanki, Jitendra
    Todkar, Anand
    MANUFACTURING LETTERS, 2024, 41 : 1192 - 1199
  • [36] A Policy Model and Framework for Context-Aware Access Control to Information Resources
    Kayes, A. S. M.
    Han, Jun
    Rahayu, Wenny
    Dillon, Tharam
    Islam, Md. Saiful
    Colman, Alan
    COMPUTER JOURNAL, 2019, 62 (05): : 670 - 705
  • [37] A Federated Approach to Information Management in Grids
    Aktas, Mehmet S.
    Fox, Geoffrey C.
    Pierce, Marlon
    INTERNATIONAL JOURNAL OF WEB SERVICES RESEARCH, 2010, 7 (01) : 65 - 98
  • [38] Federated Identity and Access Management for the Internet of Things
    Fremantle, Paul
    Aziz, Benjamin
    Kopecky, Jacek
    Scott, Philip
    2014 INTERNATIONAL WORKSHOP ON SECURE INTERNET OF THINGS (SIOT), 2014, : 10 - 17
  • [39] A Framework for Distributed Metadata Management of Mineral Information Resources with Access Control
    Sui, Zhengwei
    Tian, Yuan
    Wang, Xingguang
    Wu, Lun
    2013 21ST INTERNATIONAL CONFERENCE ON GEOINFORMATICS (GEOINFORMATICS), 2013,
  • [40] Policy-based management and sharing of sensitive information among government agencies
    Ager, Tryg
    Johnson, Christopher
    Kiernan, Jerry
    MILCOM 2006, VOLS 1-7, 2006, : 520 - +