An Access-Control Policy Based on Sharing Resource Management for a Multi-domains Environment

  • Hong Zhu
  • Sujuan Duan
  • Fan Hong
  • Kevin Lü
Conference paper

DOI: 10.1007/11839569_42

Volume 4158 of the book series Lecture Notes in Computer Science (LNCS)
Cite this paper as:
Zhu H., Duan S., Hong F., Lü K. (2006) An Access-Control Policy Based on Sharing Resource Management for a Multi-domains Environment. In: Yang L.T., Jin H., Ma J., Ungerer T. (eds) Autonomic and Trusted Computing. ATC 2006. Lecture Notes in Computer Science, vol 4158. Springer, Berlin, Heidelberg

Abstract

This paper proposed an access control policy based on sharing resource management for a multi-domain environment, where multi-domains have coalesced to achieving a common goal and furthermore a root organization domain is trusted by the multi-domains. Role association is defined and used which set up the foundation for our approach. Each domain unifies the management of shared resources via role associations. A new sharing security domain is established, which is based on the extended hierarchy of roles in the root organization domain. The formation rules of the roles and the way of construction of the roles hierarchy in sharing security domain are also introduced. The role association conflicting issues and rules for role maintenance are also analyzed. Our approaches have enhanced the security measures of shared resources and resolved the problems of the domain crossing and covert promotion which exist in other approaches.

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Copyright information

© Springer-Verlag Berlin Heidelberg 2006

Authors and Affiliations

  • Hong Zhu
    • 1
  • Sujuan Duan
    • 1
  • Fan Hong
    • 1
  • Kevin Lü
    • 2
  1. 1.Huazhong University of Science and TechnologyWuhan, HubeiP.R. China
  2. 2.BBSBrunel UniversityUxbridgeUK