Role-based privilege and trust management

Dongwan Shin, Gail-Joon Ahn

Research output: Contribution to journalArticle

21 Citations (Scopus)

Abstract

The Internet provides tremendous connectivity and information sharing capability which organizations can use for their competitive advantage. However, we still observe security challenges in Internet-based applications, especially in terms of their limited support for controlled access to organizational resources and information for unknown} users. Roles can be a convenient construct for expressing entitled privileges and trust degree alike, based upon which further specification of responsibility and capability is made so as to facilitate trust-based authorization for such an environment. In this article, we design a role-based privilege and trust management by leveraging a role-based trust model and a privilege management infrastructure, as an attempt to develop an easy-to-use, flexible, and interoperable authorization mechanism for unknown users. Also, we demonstrate the feasibility of our mechanism by providing a proof-of-concept prototype implementation using commercial off-the-shelf technologies.

Original languageEnglish (US)
Pages (from-to)401-410
Number of pages10
JournalComputer Systems Science and Engineering
Volume20
Issue number6
StatePublished - Nov 2005
Externally publishedYes

Fingerprint

Trust Management
Authorization
Internet
Unknown
Trust Model
Alike
Information Sharing
Connectivity
Infrastructure
Prototype
Specification
Specifications
Resources
Demonstrate
Concepts
Design

Keywords

  • Privilege management
  • Role-based access control
  • Trust management

ASJC Scopus subject areas

  • Hardware and Architecture
  • Theoretical Computer Science
  • Computational Theory and Mathematics

Cite this

Role-based privilege and trust management. / Shin, Dongwan; Ahn, Gail-Joon.

In: Computer Systems Science and Engineering, Vol. 20, No. 6, 11.2005, p. 401-410.

Research output: Contribution to journalArticle

@article{02b6cc8cdd2444ddaa8045361f12862f,
title = "Role-based privilege and trust management",
abstract = "The Internet provides tremendous connectivity and information sharing capability which organizations can use for their competitive advantage. However, we still observe security challenges in Internet-based applications, especially in terms of their limited support for controlled access to organizational resources and information for unknown} users. Roles can be a convenient construct for expressing entitled privileges and trust degree alike, based upon which further specification of responsibility and capability is made so as to facilitate trust-based authorization for such an environment. In this article, we design a role-based privilege and trust management by leveraging a role-based trust model and a privilege management infrastructure, as an attempt to develop an easy-to-use, flexible, and interoperable authorization mechanism for unknown users. Also, we demonstrate the feasibility of our mechanism by providing a proof-of-concept prototype implementation using commercial off-the-shelf technologies.",
keywords = "Privilege management, Role-based access control, Trust management",
author = "Dongwan Shin and Gail-Joon Ahn",
year = "2005",
month = "11",
language = "English (US)",
volume = "20",
pages = "401--410",
journal = "Computer Systems Science and Engineering",
issn = "0267-6192",
publisher = "CRL Publishing",
number = "6",

}

TY - JOUR

T1 - Role-based privilege and trust management

AU - Shin, Dongwan

AU - Ahn, Gail-Joon

PY - 2005/11

Y1 - 2005/11

N2 - The Internet provides tremendous connectivity and information sharing capability which organizations can use for their competitive advantage. However, we still observe security challenges in Internet-based applications, especially in terms of their limited support for controlled access to organizational resources and information for unknown} users. Roles can be a convenient construct for expressing entitled privileges and trust degree alike, based upon which further specification of responsibility and capability is made so as to facilitate trust-based authorization for such an environment. In this article, we design a role-based privilege and trust management by leveraging a role-based trust model and a privilege management infrastructure, as an attempt to develop an easy-to-use, flexible, and interoperable authorization mechanism for unknown users. Also, we demonstrate the feasibility of our mechanism by providing a proof-of-concept prototype implementation using commercial off-the-shelf technologies.

AB - The Internet provides tremendous connectivity and information sharing capability which organizations can use for their competitive advantage. However, we still observe security challenges in Internet-based applications, especially in terms of their limited support for controlled access to organizational resources and information for unknown} users. Roles can be a convenient construct for expressing entitled privileges and trust degree alike, based upon which further specification of responsibility and capability is made so as to facilitate trust-based authorization for such an environment. In this article, we design a role-based privilege and trust management by leveraging a role-based trust model and a privilege management infrastructure, as an attempt to develop an easy-to-use, flexible, and interoperable authorization mechanism for unknown users. Also, we demonstrate the feasibility of our mechanism by providing a proof-of-concept prototype implementation using commercial off-the-shelf technologies.

KW - Privilege management

KW - Role-based access control

KW - Trust management

UR - http://www.scopus.com/inward/record.url?scp=31544451249&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=31544451249&partnerID=8YFLogxK

M3 - Article

AN - SCOPUS:31544451249

VL - 20

SP - 401

EP - 410

JO - Computer Systems Science and Engineering

JF - Computer Systems Science and Engineering

SN - 0267-6192

IS - 6

ER -