Using X.509 attribute certificates for role-based EAM

Dongwan Shin; Gail Joon Ahn; Sangrae Cho

doi:10.1007/978-0-387-35697-6_5

Using X.509 attribute certificates for role-based EAM

Dongwan Shin, Gail Joon Ahn, Sangrae Cho

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

In this paper, we describe an experiment of designing and implementing a rolebased extranet access management (EAM) by leveraging role-based access control (RBAC) and X.S09 attribute certificates for scalable and interoperable authorization. Compared with previous works in this area, we show that our approach can overcome the problems of previous solutions and broaden RBAC's applicability into large-scale networks. The components for role administration are defined and a security architecture is discussed. We also demonstrate the feasibility of our approach through a proof-of-concept implementation. Several issues from our experiment are briefly discussed as well.

Original language	English (US)
Title of host publication	Research directions in Data and Applications Security - IFIP TC11/WG11.3 16th Annual Conference on Data and Applications Security
Publisher	Springer New York LLC
Pages	49-60
Number of pages	12
ISBN (Print)	9781475764130
DOIs	https://doi.org/10.1007/978-0-387-35697-6_5
State	Published - 2003
Externally published	Yes
Event	IFIP TC11/WG11.3 16th Annual Conference on Data and Applications Security - Cambridge, United Kingdom Duration: Jul 28 2002 → Jul 31 2002

Publication series

Name	IFIP Advances in Information and Communication Technology
Volume	128
ISSN (Print)	1868-4238

Other

Other	IFIP TC11/WG11.3 16th Annual Conference on Data and Applications Security
Country/Territory	United Kingdom
City	Cambridge
Period	7/28/02 → 7/31/02

Keywords

Access control
Attribute certificate
Privilege management infrastructure
Role-based access control

ASJC Scopus subject areas

Information Systems
Computer Networks and Communications
Information Systems and Management

Access to Document

10.1007/978-0-387-35697-6_5

Cite this

Shin, D., Ahn, G. J., & Cho, S. (2003). Using X.509 attribute certificates for role-based EAM. In Research directions in Data and Applications Security - IFIP TC11/WG11.3 16th Annual Conference on Data and Applications Security (pp. 49-60). (IFIP Advances in Information and Communication Technology; Vol. 128). Springer New York LLC. https://doi.org/10.1007/978-0-387-35697-6_5

Using X.509 attribute certificates for role-based EAM. / Shin, Dongwan; Ahn, Gail Joon; Cho, Sangrae.
Research directions in Data and Applications Security - IFIP TC11/WG11.3 16th Annual Conference on Data and Applications Security. Springer New York LLC, 2003. p. 49-60 (IFIP Advances in Information and Communication Technology; Vol. 128).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Shin, D, Ahn, GJ & Cho, S 2003, Using X.509 attribute certificates for role-based EAM. in Research directions in Data and Applications Security - IFIP TC11/WG11.3 16th Annual Conference on Data and Applications Security. IFIP Advances in Information and Communication Technology, vol. 128, Springer New York LLC, pp. 49-60, IFIP TC11/WG11.3 16th Annual Conference on Data and Applications Security, Cambridge, United Kingdom, 7/28/02. https://doi.org/10.1007/978-0-387-35697-6_5

@inproceedings{60963bc9867348c7ab8fe8da2fddcee9,

title = "Using X.509 attribute certificates for role-based EAM",

abstract = "In this paper, we describe an experiment of designing and implementing a rolebased extranet access management (EAM) by leveraging role-based access control (RBAC) and X.S09 attribute certificates for scalable and interoperable authorization. Compared with previous works in this area, we show that our approach can overcome the problems of previous solutions and broaden RBAC's applicability into large-scale networks. The components for role administration are defined and a security architecture is discussed. We also demonstrate the feasibility of our approach through a proof-of-concept implementation. Several issues from our experiment are briefly discussed as well.",

keywords = "Access control, Attribute certificate, Privilege management infrastructure, Role-based access control",

author = "Dongwan Shin and Ahn, {Gail Joon} and Sangrae Cho",

year = "2003",

doi = "10.1007/978-0-387-35697-6_5",

language = "English (US)",

isbn = "9781475764130",

series = "IFIP Advances in Information and Communication Technology",

publisher = "Springer New York LLC",

pages = "49--60",

booktitle = "Research directions in Data and Applications Security - IFIP TC11/WG11.3 16th Annual Conference on Data and Applications Security",

note = "IFIP TC11/WG11.3 16th Annual Conference on Data and Applications Security ; Conference date: 28-07-2002 Through 31-07-2002",

}

TY - GEN

T1 - Using X.509 attribute certificates for role-based EAM

AU - Shin, Dongwan

AU - Ahn, Gail Joon

AU - Cho, Sangrae

PY - 2003

Y1 - 2003

N2 - In this paper, we describe an experiment of designing and implementing a rolebased extranet access management (EAM) by leveraging role-based access control (RBAC) and X.S09 attribute certificates for scalable and interoperable authorization. Compared with previous works in this area, we show that our approach can overcome the problems of previous solutions and broaden RBAC's applicability into large-scale networks. The components for role administration are defined and a security architecture is discussed. We also demonstrate the feasibility of our approach through a proof-of-concept implementation. Several issues from our experiment are briefly discussed as well.

AB - In this paper, we describe an experiment of designing and implementing a rolebased extranet access management (EAM) by leveraging role-based access control (RBAC) and X.S09 attribute certificates for scalable and interoperable authorization. Compared with previous works in this area, we show that our approach can overcome the problems of previous solutions and broaden RBAC's applicability into large-scale networks. The components for role administration are defined and a security architecture is discussed. We also demonstrate the feasibility of our approach through a proof-of-concept implementation. Several issues from our experiment are briefly discussed as well.

KW - Access control

KW - Attribute certificate

KW - Privilege management infrastructure

KW - Role-based access control

UR - http://www.scopus.com/inward/record.url?scp=84904360267&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84904360267&partnerID=8YFLogxK

U2 - 10.1007/978-0-387-35697-6_5

DO - 10.1007/978-0-387-35697-6_5

M3 - Conference contribution

AN - SCOPUS:84904360267

SN - 9781475764130

T3 - IFIP Advances in Information and Communication Technology

SP - 49

EP - 60

BT - Research directions in Data and Applications Security - IFIP TC11/WG11.3 16th Annual Conference on Data and Applications Security

PB - Springer New York LLC

T2 - IFIP TC11/WG11.3 16th Annual Conference on Data and Applications Security

Y2 - 28 July 2002 through 31 July 2002

ER -

Using X.509 attribute certificates for role-based EAM

Abstract

Publication series

Other

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this