%0 Conference Proceedings
%T Inter-ReBAC: Inter-operation of Relationship-Based Access Control Model Instances
%+ Royal Holloway [University of London] (RHUL)
%A Crampton, Jason
%A Sellwood, James
%Z Part 3: Access Control
%< avec comité de lecture
%( Lecture Notes in Computer Science
%B 30th IFIP Annual Conference on Data and Applications Security and Privacy (DBSec)
%C Trento, Italy
%Y Silvio Ranise
%Y Vipin Swarup
%I Springer International Publishing
%3 Data and Applications Security and Privacy XXX
%V LNCS-9766
%P 96-105
%8 2016-07-18
%D 2016
%R 10.1007/978-3-319-41483-6_7
%K Access control
%K Path condition
%K Relationship
%K Principal matching
%K Policy graph
%K Principal activation
%K Authorization
%K Secure inter-operation
%Z Computer Science [cs]Conference papers
%X Relationship-based access control (ReBAC) models define authorization policies and make authorization decisions on the basis of relationships between the entities in a system. We present a framework through which multiple ReBAC model instances can interoperate so that requests initiated in one system may target resources in a second system. Further, our framework is able to support requests passing through a chain of inter-connected systems, thus enabling many systems to be connected together or a single large system to be decomposed into numerous component subsystems. Whilst the underlying principles of this framework can be applied to any ReBAC model, we introduce its formal application to our RPPM model [3], the first, and most actively developing, general computing ReBAC model.
%G English
%Z TC 11
%Z WG 11.3
%2 https://inria.hal.science/hal-01633675/document
%2 https://inria.hal.science/hal-01633675/file/428203_1_En_7_Chapter.pdf
%L hal-01633675
%U https://inria.hal.science/hal-01633675
%~ IFIP-LNCS
%~ IFIP
%~ IFIP-TC
%~ IFIP-WG
%~ IFIP-TC11
%~ IFIP-WG11-3
%~ IFIP-DBSEC
%~ IFIP-LNCS-9766