X-RDR: A role-based delegation processor for Web-based information systems

Shihyu Chou*, Eric Jui Lin Lu, Yi Hui Chen

*Corresponding author for this work

Research output: Contribution to journalArticlepeer-review

4 Citations (Scopus)


Although Web-based information systems (WISs) have been widely used by enterprises to accomplish business tasks through the Internet, there is little research on designing a flexible access control and delegation model for WISs. In this paper, we design a user-to-user and role-to-role delegation model (called X-RDR model) for WISs. The authorization and delegation policies are encoded in XML and the granularity of control can be as small as a text-field or button. Additionally, the proposed model supports single-step delegation, multi-step delegation, multiple delegation, partial delegation, separation of duties, and cascading revocation. A prototype was also implemented to demonstrate the feasibility of the proposed model.

Original languageEnglish
Pages (from-to)4-21
Number of pages18
JournalOperating Systems Review (ACM)
Issue number1
Publication statusPublished - 2005
Externally publishedYes


  • Delegation
  • Granular access control
  • WIS
  • XML

ASJC Scopus subject areas

  • Information Systems
  • Hardware and Architecture
  • Computer Networks and Communications


Dive into the research topics of 'X-RDR: A role-based delegation processor for Web-based information systems'. Together they form a unique fingerprint.

Cite this