An Attribute-Based Access Control Model for Web Services

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Hai-bo Shen Articles by Fan Hong

Seventh International Conference on Parallel and Distributed Computing, Applications and Technologies (PDCAT'06)

Taipei, Taiwan

December 04-December 07

ISBN: 0-7695-2736-1

	ASCII Text	x
	Hai-bo Shen, Fan Hong, "An Attribute-Based Access Control Model for Web Services," Parallel and Distributed Computing Applications and Technologies, International Conference on, pp. 74-79, Seventh International Conference on Parallel and Distributed Computing, Applications and Technologies (PDCAT'06), 2006.

	BibTex	x
	@article{ 10.1109/PDCAT.2006.28, author = {Hai-bo Shen and Fan Hong}, title = {An Attribute-Based Access Control Model for Web Services}, journal ={Parallel and Distributed Computing Applications and Technologies, International Conference on}, volume = {0}, year = {2006}, isbn = {0-7695-2736-1}, pages = {74-79}, doi = {http://doi.ieeecomputersociety.org/10.1109/PDCAT.2006.28}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Parallel and Distributed Computing Applications and Technologies, International Conference on TI - An Attribute-Based Access Control Model for Web Services SN - 0-7695-2736-1 SP74 EP79 A1 - Hai-bo Shen, A1 - Fan Hong, PY - 2006 KW - Attribute-Based Access Control KW - Web Services KW - Automated Trust Negotiation KW - XACML VL - 0 JA - Parallel and Distributed Computing Applications and Technologies, International Conference on ER -

Hai-bo Shen, Huazhong University of Science and Technology, China

Fan Hong, Huazhong University of Science and Technology, China

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/PDCAT.2006.28

Web service is a new service-oriented computing paradigm which poses the unique security challenges due to its inherent heterogeneity, multi-domain characteristic and highly dynamic nature. A key challenge in Web services security is the design of effective access control schemes. However, most current access control systems base authorization decisions on subject's identity. Administrative scalability and control granularity are serious problems in those systems, and they are not fit for Web services environment. So an attribute-based access control model (WS-ABAC) is presented to address these issues in this paper. WS-ABAC grants access to services based on attributes of the related entities, and uses automated trust negotiation mechanism to address the disclosure issue of the sensitive attributes. It can provide administratively scalable alternative to identity-based authorization methods and provide fine-grained access control for Web services. Moreover, it also can protect user's privacy.

Index Terms:

Attribute-Based Access Control, Web Services, Automated Trust Negotiation, XACML

Citation:

Hai-bo Shen, Fan Hong, "An Attribute-Based Access Control Model for Web Services," pdcat, pp.74-79, Seventh International Conference on Parallel and Distributed Computing, Applications and Technologies (PDCAT'06), 2006

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.