Flexible secure inter-domain interoperability through attribute conversion

Carles Martínez-García, Guillermo Navarro-Arribas, Simon N. Foley, Vicen Torra, Joan Borrell

Research output: Contribution to journalArticleResearchpeer-review

3 Citations (Scopus)

Abstract

The access control policy of an application that is composed of interoperating components/services is defined in terms of the access control policies enforced by the respective services. These individual access control policies are heterogenous in the sense that the services may be independently developed and managed and it is not practical to assume that all policies are defined with respect to some uniform domain vocabulary of policy attributes. A framework is described that provides a domain mapping for heterogenous policies. A fuzzy-based conversion mechanism determines the degree to which an access control attribute of one (service) policy may safely interoperate with an access control attribute of another (service) policy. The approach is scalable in the sense that it is not necessary to a priori specify every pairwise policy interoperation relationship, rather, where obvious interpretations exist then policy relationships are specified, while other relationships are inferred using the fuzzy mechanism. © 2011 Elsevier Inc. All rights reserved.
Original languageEnglish
Pages (from-to)3491-3507
JournalInformation Sciences
Volume181
DOIs
Publication statusPublished - 15 Aug 2011

Keywords

  • Access control
  • Attribute conversion
  • Flexibility
  • Interoperability

Fingerprint Dive into the research topics of 'Flexible secure inter-domain interoperability through attribute conversion'. Together they form a unique fingerprint.

Cite this