An Authorisation Policy Management Model in Federations

Vu Ngoc Cham; Nguyen Tuan Anh

doi:10.25073/2588-1086/vnucsce.174

Vu Ngoc Cham, Nguyen Tuan Anh

PDF

Published Sep 27, 2018

DOI: https://doi.org/10.25073/2588-1086/vnucsce.174

How to Cite

CHAM, Vu Ngoc; ANH, Nguyen Tuan. An Authorisation Policy Management Model in Federations. VNU Journal of Science: Computer Science and Communication Engineering, [S.l.], v. 34, n. 1, sep. 2018. ISSN 2588-1086. Available at: <//jcsce.vnu.edu.vn/index.php/jcsce/article/view/174>. Date accessed: 25 apr. 2024. doi: https://doi.org/10.25073/2588-1086/vnucsce.174.

ABNT APA BibTeX CBE EndNote - EndNote format (Macintosh & Windows) MLA ProCite - RIS format (Macintosh & Windows) RefWorks Reference Manager - RIS format (Windows only) Turabian

Issue

Vol 34 No 1 (2018)

Section

Articles

Abstract

A federation is usually an alliance of organisations where users from one organisation are trusted to access resources in another organisation. The membership of federations is diverse and continually changing. Federations require distributed and dynamic security policy management to meet these challenges. We propose an authorisation policy management model, FABACD, which simplifies the management of collaborations between organisations. It allows distributed and trusted administrators to adjust the authorisation policies in a resource holding organisation, whilst ensuring that the latter remains in ultimate control. The net result is that a resourceâ€™s authorisation system is able to use user credentials built from preexisting attributes issued by any participating organisation, in order to determine a userâ€™s access rights to the various resources, without requiring credentials to be issued that are based on federation specific attributes. The model significantly simplifies the authorisation management process for the resource holding organisation.

Article Sidebar

Article Details

Main Article Content

Abstract