TY - JOUR
T1 - X-RDR
T2 - A role-based delegation processor for Web-based information systems
AU - Chou, Shihyu
AU - Lu, Eric Jui Lin
AU - Chen, Yi Hui
PY - 2005
Y1 - 2005
N2 - Although Web-based information systems (WISs) have been widely used by enterprises to accomplish business tasks through the Internet, there is little research on designing a flexible access control and delegation model for WISs. In this paper, we design a user-to-user and role-to-role delegation model (called X-RDR model) for WISs. The authorization and delegation policies are encoded in XML and the granularity of control can be as small as a text-field or button. Additionally, the proposed model supports single-step delegation, multi-step delegation, multiple delegation, partial delegation, separation of duties, and cascading revocation. A prototype was also implemented to demonstrate the feasibility of the proposed model.
AB - Although Web-based information systems (WISs) have been widely used by enterprises to accomplish business tasks through the Internet, there is little research on designing a flexible access control and delegation model for WISs. In this paper, we design a user-to-user and role-to-role delegation model (called X-RDR model) for WISs. The authorization and delegation policies are encoded in XML and the granularity of control can be as small as a text-field or button. Additionally, the proposed model supports single-step delegation, multi-step delegation, multiple delegation, partial delegation, separation of duties, and cascading revocation. A prototype was also implemented to demonstrate the feasibility of the proposed model.
KW - Delegation
KW - Granular access control
KW - WIS
KW - XML
UR - http://www.scopus.com/inward/record.url?scp=33750859363&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=33750859363&partnerID=8YFLogxK
U2 - 10.1145/1044552.1044553
DO - 10.1145/1044552.1044553
M3 - Article
AN - SCOPUS:33750859363
SN - 0163-5980
VL - 39
SP - 4
EP - 21
JO - Operating Systems Review (ACM)
JF - Operating Systems Review (ACM)
IS - 1
ER -