Proceedings Article10.1109/HASE.2007.30
Delegation-Based Security Model for Web Services
Wei She,Bhavani Thuraisingham,I-Ling Yen +2 more
- 14 Nov 2007
- pp 82-91
20
TL;DR: This paper extends the basic security models and supports flexible delegation and evaluation-based access control and proposes a delegation-based security model to address all these issues.
read more
Abstract: Web service is the emerging standard that supports the seamless interoperation between different applications. While the interoperability, flexibility and automated composition are continuously enhanced, security is still the major hurdle. In recent years, lots of studies have been conducted in web service security and various security standards have been proposed. But most of these studies and standards focus on the access control policies for individual web services and do not consider the access issues in composed services. Consider a simplest service chain wherein a user x accesses service s1, and s2, in turn, accesses service s2- The current web service security framework assumes .s1 accesses s2 based on its own privilege; thus sensitive information may be incorrectly revealed to x. A better solution is that x delegates its privilege to service s1 for this access. However, problems such as how much privilege to delegate, how to confirm cross-domain delegation, how to delegate additional privilege when needed, etc. arise. The problem becomes more complex when workflow involves many layers of services. In this paper, we propose a delegation-based security model to address all these issues. It extends the basic security models and supports flexible delegation and evaluation-based access control.
read more
Chat with Paper
AI Agents for this Paper
Find similar papers on Google Scholar, PubMed and Arxiv
Write a critical review of this paper
Analyze citations of this paper to find unaddressed research gaps
Citations
Delegation of access rights in multi-domain service compositions
TL;DR: This article specifies abstract delegation, discusses theoretical aspects of the concept, and provides technical details of a validation implementation supporting a variety of access controls and associated delegation mechanisms.
dDelega: Trust Management for Web Services
TL;DR: In this article, the authors present dDelega, a trust management framework for SOAP-style and REST-style Web services, available as open source software and usable in different application scenarios.
25
Enhancing Security Modeling for Web Services Using Delegation and Pass-On
TL;DR: An enhanced security model to control the information flow in service chains is proposed by extending the basic web service security models by introducing the concepts of delegation and pass-on.
21
CloudThinking as an Intelligent Infrastructure for Mobile Robotics
TL;DR: This paper presents the CloudThinking architecture applied to intelligent cloud-based robotic operation, which offloads most of complex robotic tasks to a central cloud, which retrieves inputs from the environment as a whole in order to instruct the robots to perform its actions.
16
Trust Management and Delegation for the Administration of Web Services
Michele Tomaiuolo
- 01 Jan 2014
TL;DR: This chapter presents different mechanisms and models which have been proposed for establishing secure delegations in open environments, including Role-Based Access Control, Trust Management and Federated Identity.
References
Distributed and parallel database systems
M. Tamer Özsu,Patrick Valduriez +1 more
TL;DR: The maturation of database management system (DBMS) technology has coincided with significant developments in distributed computing and parallel processing technologies as discussed by the authors, and the end result is the development of distributed database management systems and parallel DBMS that are now the dominant data management tools for highly data-intensive applications.
479
Distributed and Parallel Database Systems.
M. Tamer Özsu,Patrick Valduriez +1 more
- 01 Jan 1997
TL;DR: The maturation of database management system (DBMS) technology has coincided with significant developments in distributed computing and parallel processing technologies as discussed by the authors, and the end result is the development of distributed database management systems and parallel DBMS that are now the dominant data management tools for highly data-intensive applications.
434
Multi-Robot Systems: From Swarms to Intelligent Automata
Alan C. Schultz,Lynne E. Parker +1 more
- 01 Jan 2002
TL;DR: This paper presents a framework for Studying Multi-Robot Task Allocation in a Distributed Layered Architecture, and discusses the impact of Autonomy in Multirobot Systems on Teleoperation Performance.
316
Framework for role-based delegation models
Ezedin Barka,Ravi Sandhu +1 more
- 11 Dec 2000
TL;DR: This work develops a framework for identifying interesting cases that can be used for building role-based delegation models by identifying the characteristics related to delegation, using these characteristics to generate possible delegation cases, and using a systematic approach to reduce the large number of cases into few useful cases.
PBDM: a flexible delegation model in RBAC
Xinwen Zhang,Sejong Oh,Ravi Sandhu +2 more
- 02 Jun 2003
TL;DR: This paper proposes a flexible delegation model named Permission-based Delegation Model (PBDM), which is built on the well known RBAC96 model, and supports both role and permission level delegation, which provides great flexibility in authority management.
240
Related Papers (5)
Carlos Gutiérrez,Eduardo Fernández-Medina,Mario Piattini +2 more
- 18 Sep 2006
Wenjun Zhang
- 02 Apr 2010