Title :
Research on Policy-based Access Control Model
Author :
Zhi, Lin ; Jing, Wang ; Xiao-su, Chen ; Lian-xing, Jia
Author_Institution :
No. 1 Dept., Wuhan Commanding Commun. Acad., Wuhan
Abstract :
Because of the limitations of condition configuration and execution mechanism, the exiting access control models are not flexible and can not support multi-policy. Focusing on this, the paper presents a policy-based access control model (PBAC). Different from the traditional models which restrict session only with subject authorization, PBAC realizes policy-based access control by defining attribute to describe session property, performing a new policy management method that is free from application logic, and advocating an independent access control decision mechanism. As a consequence, PBAC is more flexible on restricting session, and makes great progress on multi-policy supporting. The comparison analysis indicates that PBAC is superior to the current access control models.
Keywords :
authorisation; authorization; execution mechanism; independent access control decision mechanism; policy management method; policy-based access control model; Access control; Authorization; Computer networks; Computer science; Computer security; Concrete; Information security; Logic; Wireless communication; XML; access control model; attribute; decision; multi-policy supporting; policy;
Conference_Titel :
Networks Security, Wireless Communications and Trusted Computing, 2009. NSWCTC '09. International Conference on
Conference_Location :
Wuhan, Hubei
Print_ISBN :
978-1-4244-4223-2
DOI :
10.1109/NSWCTC.2009.313
