Inter-ReBAC: Inter-operation of Relationship-Based Access Control Model Instances - Data and Applications Security and Privacy XXX
Conference Papers Year : 2016

Inter-ReBAC: Inter-operation of Relationship-Based Access Control Model Instances

Jason Crampton
  • Function : Author
  • PersonId : 1013578
James Sellwood
  • Function : Author
  • PersonId : 1022668

Abstract

Relationship-based access control (ReBAC) models define authorization policies and make authorization decisions on the basis of relationships between the entities in a system. We present a framework through which multiple ReBAC model instances can interoperate so that requests initiated in one system may target resources in a second system. Further, our framework is able to support requests passing through a chain of inter-connected systems, thus enabling many systems to be connected together or a single large system to be decomposed into numerous component subsystems. Whilst the underlying principles of this framework can be applied to any ReBAC model, we introduce its formal application to our RPPM model [3], the first, and most actively developing, general computing ReBAC model.
Fichier principal
Vignette du fichier
428203_1_En_7_Chapter.pdf (150.86 Ko) Télécharger le fichier
Origin Files produced by the author(s)
Loading...

Dates and versions

hal-01633675 , version 1 (13-11-2017)

Licence

Identifiers

Cite

Jason Crampton, James Sellwood. Inter-ReBAC: Inter-operation of Relationship-Based Access Control Model Instances. 30th IFIP Annual Conference on Data and Applications Security and Privacy (DBSec), Jul 2016, Trento, Italy. pp.96-105, ⟨10.1007/978-3-319-41483-6_7⟩. ⟨hal-01633675⟩
105 View
104 Download

Altmetric

Share

More