Abstract
Business process collaboration has gained a lot of attention due to the great need for integrating business process of different organizations. The most suitable issue to secure this collaboration is using access control model. However access control model diversity makes it more complex to collaborate cross-organization, especially when each organization refuses to change its security policies, prefers to preserve its access control model and needs to protect its information assets. To meet this problem we propose a flexible architecture based on Attribute Based Access Control (ABAC) model to ensure heterogeneity of access control cross-organization and on specified collaboration contract between these organizations. To validate our approach we have used web services technology, and we have implemented a prototype based on open source platforms WSO2.
This work is part of ongoing Moroccan-German project PMARS.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Tolone, W., Ahn, G., Pai, T., Hong, S.: Access control in collaborative systems. ACM Comput. Surv. (CSUR) 37(1), 29–41 (2005)
Haguouche, S., Jarir, Z.: An architecture based on trust for collaborative access control models. In: Workshop on Security Policies in Cloud Environment. (PoliCE 2014) (2014)
Yuan, E., Tong, J.: Attributed based access control (ABAC) for Web services. In: IEEE International Conference on Web Services (ICWS 2005), p. 569. IEEE (2005)
Kalam, A.A., El Benferhat, S., Miège, A., Baida, R., El Cuppens, F., Saurel, C., Balbiani, P., Deswarte, Y., Trouessin, G.: Organization based access control. In: Proceedings of the 4th IEEE International Workshop on Policies for Distributed Systems and Networks (2003)
Liang, F., Guo, H., Yi, S., Ma, S.: A multiple-policy supported attribute-based access control architecture within large-scale device collaboration systems. J. Netw. 7(3), 524–531 (2012)
Lang, B., Foster, I., Siebenlist, F., Ananthakrishnan, R., Freeman, T.: A flexible attribute based access control method for grid computing. J. Grid Comput. 7, 169–180 (2008)
Bhatti, R., Bertino, E., Ghafoor, A.: A trust-based context-aware access control model for Web-services. In: 2004 Proceedings of the IEEE International Conference on Web Services, pp. 184–191. IEEE (2004)
Skopik, F., Truong, H., Dustdar, S.: VIeTE-enabling trust emergence in service-oriented collaborative environments. In: International Conference on Web Information Systems and Technologies (2009)
Standard, O.: eXtensible Access Control Markup Language (XACML) Version 3.0 (2013)
WSO2. http://wso2.com. Accessed 02 June 2014
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2015 Springer International Publishing Switzerland
About this paper
Cite this paper
Haguouche, S., Jarir, Z. (2015). Managing Heterogeneous Access Control Models Cross-Organization. In: Lopez, J., Ray, I., Crispo, B. (eds) Risks and Security of Internet and Systems. CRiSIS 2014. Lecture Notes in Computer Science(), vol 8924. Springer, Cham. https://doi.org/10.1007/978-3-319-17127-2_15
Download citation
DOI: https://doi.org/10.1007/978-3-319-17127-2_15
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-319-17126-5
Online ISBN: 978-3-319-17127-2
eBook Packages: Computer ScienceComputer Science (R0)