• 主题
高级搜索  >
历史搜索 清空历史
首页> 外文会议>Annual IFIP WG 11.3 Working Conference on Data and Applications Security >A Privacy-Enhanced Attribute-Based Access Control System
【24h】

A Privacy-Enhanced Attribute-Based Access Control System

机译:一种隐私增强的基于属性的访问控制系统

获取原文
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

Service-oriented architectures (SOAs) are increasingly gaining popularity due to their considerable flexibility and scalability in open IT-environments. Along with their rising acceptance comes the need for well suited security components. In this respect, access control and privacy emerged to crucial factors.Targeting the demands of a SOA, many promising authorization models have been developed, most notably the attribute-based access control (ABAC) model. In this paper we take up concepts from the OASIS XACML and WS-XACML specifications and introduce a dynamic ABAC system that incorporates privacy preferences of the service requestor in the access control process. Separating the Policy Decision Point from the service provider’s premises, our infrastructure enables the deployment of alternative PDPs the service requestor can choose from. We employ a PKI to reflect the sufficient trust relation between the service provider and a potential PDP. Our work is carried out within the European research project Access-eGov that aims at a European-wide e-Government service platform.
机译:面向服务的架构(SOA)越来越受欢迎,因为它们在开放式IT环境中具有相当大的灵活性和可扩展性。随着验收的上升,需要适合安全的安全组件。在这方面,获取控制和隐私对关键的因素产生了重要的因素。已经开发了许多有前途的授权模型,最值得注意的是基于属性的访问控制(ABAC)模型。在本文中,我们从OASIS XACML和WS-XACML规范中占用概念,并引入动态ABAC系统,该系统包含在访问控制过程中的服务请求者的隐私首选项。将策略决策点与服务提供商的场所分开,我们的基础架构能够部署替代PDP服务请求者可以选择。我们雇用了PKI来反映服务提供商与潜在PDP之间的充分信任关系。我们的工作是在欧洲研究项目访问 - EGOV中进行,旨在欧洲广泛的电子政务服务平台。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号