Title :
Research and implementation on access control of management-type SaaS
Author :
Xu, Jing ; Jinglei, Tang ; Dongjian, He ; Linsen, Zan ; Lin, Chen ; Fang, Niu
Author_Institution :
Coll. of Mech. & Electron. Eng., Northwest A&F Univ., YangLing, China
Abstract :
In the paper, we analyze the features of access control of management-type SaaS. Based on the traditional RBAC, we put forward the access control model based on both tenant and role, in which the tenant is as the minimum unit of administrative domain. To be sure user identity with physical security, we put forward the hierarchical authentication and management of user in the management-type SaaS. In order to ensure the access control model of management-type SaaS in line with the reality, we abolish the inheritance right of role in the traditional RBAC. Based on the timing diagram of UML, analyzing the access control model of the cattle public administration platform based on the SaaS, we present its dynamic modeling of access control. Test and analysis is shown that the access control model based on both tenant and role can ensure the accessibility, security and privacy to access cross-domain in the management-type SaaS, and promote the popularization and application of the management-type SaaS.
Keywords :
Unified Modeling Language; authorisation; data privacy; RBAC; UML; access control; cattle public administration platform; management-type SaaS; software as a service; timing diagram; user authentication; Access control; Application software; Authentication; Cows; Engineering management; Helium; Identity management systems; Licenses; Permission; Security; Access control; Management-type SaaS; RBAC; hierarchical authentication; inheritance right;
Conference_Titel :
Information Management and Engineering (ICIME), 2010 The 2nd IEEE International Conference on
Conference_Location :
Chengdu
Print_ISBN :
978-1-4244-5263-7
Electronic_ISBN :
978-1-4244-5265-1
DOI :
10.1109/ICIME.2010.5477832
