TY - GEN
T1 - Using X.509 attribute certificates for role-based EAM
AU - Shin, Dongwan
AU - Ahn, Gail Joon
AU - Cho, Sangrae
PY - 2003
Y1 - 2003
N2 - In this paper, we describe an experiment of designing and implementing a rolebased extranet access management (EAM) by leveraging role-based access control (RBAC) and X.S09 attribute certificates for scalable and interoperable authorization. Compared with previous works in this area, we show that our approach can overcome the problems of previous solutions and broaden RBAC's applicability into large-scale networks. The components for role administration are defined and a security architecture is discussed. We also demonstrate the feasibility of our approach through a proof-of-concept implementation. Several issues from our experiment are briefly discussed as well.
AB - In this paper, we describe an experiment of designing and implementing a rolebased extranet access management (EAM) by leveraging role-based access control (RBAC) and X.S09 attribute certificates for scalable and interoperable authorization. Compared with previous works in this area, we show that our approach can overcome the problems of previous solutions and broaden RBAC's applicability into large-scale networks. The components for role administration are defined and a security architecture is discussed. We also demonstrate the feasibility of our approach through a proof-of-concept implementation. Several issues from our experiment are briefly discussed as well.
KW - Access control
KW - Attribute certificate
KW - Privilege management infrastructure
KW - Role-based access control
UR - http://www.scopus.com/inward/record.url?scp=84904360267&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=84904360267&partnerID=8YFLogxK
U2 - 10.1007/978-0-387-35697-6_5
DO - 10.1007/978-0-387-35697-6_5
M3 - Conference contribution
AN - SCOPUS:84904360267
SN - 9781475764130
T3 - IFIP Advances in Information and Communication Technology
SP - 49
EP - 60
BT - Research directions in Data and Applications Security - IFIP TC11/WG11.3 16th Annual Conference on Data and Applications Security
PB - Springer New York LLC
T2 - IFIP TC11/WG11.3 16th Annual Conference on Data and Applications Security
Y2 - 28 July 2002 through 31 July 2002
ER -