Information Assurance and Security, International Symposium on (2009)
Aug. 18, 2009 to Aug. 20, 2009
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/IAS.2009.277
With the rapid development of the process of information of large-scale enterprises and organizations, information integration has become a hot research issue at present. Existing systems usually adopt access control model, such as ACL (access control list), MAC (mandatory access control) or RBAC (role-based access control), which results in the diversity of access control models in system integration. This paper designs a centralized authorization model supporting multiple access control, which authorizes permissions for multiple heterogeneous information systems on one point, and it makes permission management easier and more flexible in distributed environment. The process of decision-making is analyzed and methods of solving conflicts that results from decision-making are proposed at the same time. A concrete sample is cited so as to verify the feasibility of this model.
access control, centralized authorazation, decision-making arithmetic
H. Zhang, S. Zhang and B. Wang, "Study on Centralized Authorization Model Supporting Multiple Access Control Models," Information Assurance and Security, International Symposium on(IAS), Xi'An China, 2009, pp. 769-772.