Title :
AmTRUE: Authentication Management and Trusted Role-based Authorization in Multi-Application and Multi-User Environment
Author :
Fugkeaw, Somchart ; Manpanpanich, Piyawit ; Juntapremjitt, Sekpon
Author_Institution :
Thai Digital ID Co. Ltd., Bangkok
Abstract :
This paper proposes a hybrid model of an authentication technique and a role based access control (RBAC) based on X.509 public key certificate and attribute certificate. With attribute certificate the user role is bound to an identity of the public key certificate in which the permissions are assigned to the holder. A mapping model of RBAC authorization and authentication is presented. In addition, we also deal with the issue of system service disruption and recovery as well as an activity-based policy. With our proposed model, the full authentication, authorization, and accountability (AAA) are supported. We apply the multi agent system concept to facilitate the authentication and the authorization based on the PKI infrastructure. Finally, the project called AmTRUE (authentication management and trusted role-based authorization in multi-application and multi-user environment) has been developed to implement our research idea.
Keywords :
authorisation; multi-agent systems; public key cryptography; AmTRUE; X.509 public key certificate; activity-based policy; attribute certificate; authentication management; multiagent system; multiapplication environment; multiuser environment; role based access control; system service disruption; system service recovery; trusted role-based authorization; Access control; Authentication; Authorization; Automatic control; Costs; Databases; Environmental management; Permission; Public key; Resource management;
Conference_Titel :
Emerging Security Information, Systems, and Technologies, 2007. SecureWare 2007. The International Conference on
Conference_Location :
Valencia
Print_ISBN :
978-0-7695-2989-9
DOI :
10.1109/SECUREWARE.2007.4385336
