J4 ›› 2013, Vol. 48 ›› Issue (7): 51-55.

• Articles • Previous Articles     Next Articles

An expanded RBAC model of multi-granularity based on trust hierarchies

LU Qing-ping1, SU Shou-bao1,2*, YU Shu-hao1,3,4, YANG Liu1   

  1. 1. School of Information Engineering, West Anhui University, Liu’an 237012, Anhui, China;
    2. School of Information Technology, Jinling Institute of Technology, Nanjing 211169, Jiangsu, China;
    3. School of Management, Hefei University of Technology, Hefei 230009, Anhui, China;
    4. Institute of Computer Network System, Hefei University of Technology, Hefei 230009, Anhui, China
  • Received:2013-07-11 Published:2013-12-03

Abstract:

Based on the application integration environment for enterprise network authorization and access control requirements, a trust role authorization by stratified and multi-granular access control extension model (EmRBAC) is proposed, which is combined with NIST RBAC standard model, use the trusted credentials extension level between users and roles, and increase the role of trust level. From the system, applications, functions and operation of the object level, operating data time period and many other dimensions of the standard model, the elaboration of granularity of access rights is carried out. Through the role of the state stratification pretreatment reduced privileges determine the complexity and increase the efficiency of access control. Final, as an open source portal exobiology platform for experimentation platform, the model of access control processes and application examples are obtained to verify the effectiveness of the proposed model.

Key words: extended multi-granularity RBAC (EmRBAC); trust hierarchy; role status; multi-granularity

CLC Number: 

  • TP309
[1] QIU Xiu-feng1,2, LIU Jian-wei1, WU Qian-hong1, LIU Jian-hua1. Multipath interdomain routing decision verification protocol [J]. J4, 2013, 48(7): 39-45.
[2] NI Liang1,2,3, CHEN Gong-liang3, LI Jian-hua3. Security analysis of the eCK model [J]. J4, 2013, 48(7): 46-50.
Viewed
Full text


Abstract

Cited

  Shared   
  Discussed   
No Suggested Reading articles found!