Title :
An Organization-Structure Oriented Access Control Model and It´s Administration
Author :
Zhao, Xiaolong ; Zhang, Yusen ; Zhu, Yingxun
Author_Institution :
Sch. of Command Autom., PLA Univ. of Sci. & Technol., Nanjing, China
Abstract :
According to the hierarchical characteristic of real enterprise organization, an organization-structure oriented access control (OSOAC) policy is proposed. To formally describe the policy, the concept of organization domain is introduced and then the elements of access control are redefined. Based on these elements, the core OSOAC model is formally defined. To assure that the administrative frame corresponds with real enterprise structure, the components of OSOAC model is decentralized administrated based on the OSOAC policy. Contrast to RBAC model, there are fewer roles and permission assignment relations in OSOAC model, which reduce the permission-management complexity in a large access control system.
Keywords :
authorisation; business data processing; organisational aspects; organization-structure oriented access control model; permission-management complexity; real enterprise structure; ANSI standards; Access control; Automation; Control system synthesis; Electronic commerce; Military equipment; NIST; Permission; Programmable logic arrays; Standards publication; Access control; Administration; Organization-structure; Role instance;
Conference_Titel :
Information Engineering and Electronic Commerce, 2009. IEEC '09. International Symposium on
Conference_Location :
Ternopil
Print_ISBN :
978-0-7695-3686-6
DOI :
10.1109/IEEC.2009.126
