Abstract
Although Web-based information systems (WISs) have been widely used by enterprises to accomplish business tasks through the Internet, there is little research on designing a flexible access control and delegation model for WISs. In this paper, we design a user-to-user and role-to-role delegation model (called X-RDR model) for WISs. The authorization and delegation policies are encoded in XML and the granularity of control can be as small as a text-field or button. Additionally, the proposed model supports single-step delegation, multi-step delegation, multiple delegation, partial delegation, separation of duties, and cascading revocation. A prototype was also implemented to demonstrate the feasibility of the proposed model.
Original language | English |
---|---|
Pages (from-to) | 4-21 |
Number of pages | 18 |
Journal | Operating Systems Review (ACM) |
Volume | 39 |
Issue number | 1 |
DOIs | |
Publication status | Published - 2005 |
Externally published | Yes |
Keywords
- Delegation
- Granular access control
- WIS
- XML
ASJC Scopus subject areas
- Information Systems
- Hardware and Architecture
- Computer Networks and Communications