Title :
Exploiting X.509 Certificate and Multi-agent System Architecture for Role-Based Access Control and Authentication Management
Author :
Fugkeaw, Somchart ; Manpanpanich, Piyawit ; Juntapremjitt, Sekpon
Author_Institution :
Thai Digital ID Co.Ltd., Bangkok
Abstract :
This paper proposes the design of multi-user authentication in the multi-application based environment and role-based access control by using PKI Authentication and X.509 privilege management infrastructure (PMI). A binding model of RBAC authorization based on attribute certificate (AC) and public key certificate (PKC) is presented. Especially, the way of attribute mapping between PKC, bridge AC, and role AC is illustrated. In addition, the activity-based policy enforcement is introduced to make the system respond to malicious activities more appropriately. At a core, the multi agent system approach is applied to automate the flexible and effective management of user authentication, role delegation as well as system accountability. Finally, we reported our ongoing implementation status and demonstrated that our proposed model is a potential solution to support strong authentication and dynamic authorization in the multi-user and multi-application environment.
Keywords :
certification; distributed processing; multi-agent systems; public key cryptography; security of data; X.509 certificate; X.509 privilege management infrastructure; activity-based policy enforcement; attribute certificate; authentication management; malicious activities; multiagent system architecture; multiuser authentication; public key certificate; role-based access control; Access control; Authentication; Authorization; Automatic control; Communication system control; Costs; Databases; Environmental management; Information technology; Multiagent systems;
Conference_Titel :
Computer and Information Technology, 2007. CIT 2007. 7th IEEE International Conference on
Conference_Location :
Aizu-Wakamatsu, Fukushima
Print_ISBN :
978-0-7695-2983-7
DOI :
10.1109/CIT.2007.155
