Title :
An Extended ACL for Solving Authorization Conflicts
Author :
Li, Chisong ; Liao, Zhensong
Author_Institution :
Sch. of Comput. Sci. & Technol., Huazhong Univ. of Sci. & Technol., Wuhan, China
Abstract :
Authorization is an important means to endow the access requestors with different access rights according to their identities. In trust management and access control systems, authorization is used to ensure that legitimate users can access the required resources or accomplish the valid operations towards some resources. However, unlimited authorization transfer may lead to conflicts in access right. Explicit conflict and implicit conflict are two typical conflicts. When authorization conflicts happen, the access control system may involve in chaotic states and cannot provide natural services for the users. To figure out such a problem, a new approach for solving authorization conflicts is proposed. In the approach, an extended ACL is presented to carry the authorization information, and the authorization can be easily implemented by some simple functions. Thereto, a use case is given to show how the approach works, which illustrates that the approach is sound and reasonable.
Keywords :
authorisation; access control systems; access requestors; access rights; authorization conflicts; authorization information; explicit conflict; implicit conflict; trust management; unlimited authorization transfer; Access control; Authorization; Chaos; Computer science; Computer security; Data structures; Electronic commerce; Permission; Resource management; Technology management; access control; authorization conflict; trust management;
Conference_Titel :
Electronic Commerce and Security, 2009. ISECS '09. Second International Symposium on
Conference_Location :
Nanchang
Print_ISBN :
978-0-7695-3643-9
DOI :
10.1109/ISECS.2009.164
