The Design of Visual RBAC Model Based on UML and XACML Integrating

被引:0
|
作者
Fan, Baode [1 ]
Li, Mengmeng [1 ]
机构
[1] Yantai Univ, Sch Comp Sci, Yantai, Shandong, Peoples R China
来源
PROCEEDINGS OF INTERNATIONAL CONFERENCE ON SOFT COMPUTING TECHNIQUES AND ENGINEERING APPLICATION, ICSCTEA 2013 | 2014年 / 250卷
关键词
XACML; RBAC; Model integration; Role-permission; Score management;
D O I
10.1007/978-81-322-1695-7_25
中图分类号
TP18 [人工智能理论];
学科分类号
081104 ; 0812 ; 0835 ; 1405 ;
摘要
Security is an indispensable part of modern software system. Access control is an important measure to guarantee the security of a system; however, the modeling of modern software system does not deal with security, which brings great hidden danger in later security maintenance and the system integration. In this paper, we use a score management system as an example, describe the visualization modeling of RBAC model using the visualized UML, and provide the details about the modeling method and concrete realization of the RBAC model into this system. At the same time, we describe the permissions between users and objects in the RBAC model, combined with eXtensible Access Control Markup Language (XACML), realized the formal description of the access control policy, simplified authorization, and increased the security of the model.
引用
收藏
页码:213 / 222
页数:10
相关论文
共 46 条
  • [1] The Design and Research of RBAC Model Based on Web
    Du Jiangyi
    Niu Yan
    2009 ISECS INTERNATIONAL COLLOQUIUM ON COMPUTING, COMMUNICATION, CONTROL, AND MANAGEMENT, VOL IV, 2009, : 640 - 643
  • [2] Towards a Flexible Framework to Support a Generalized Extension of XACML for Spatio-temporal RBAC Model with Reasoning Ability
    Tuan Ngoc Nguyen
    Kim Tuyen Le Thi
    Anh Tuan Dang
    Ha Duc Son Van
    Tran Khanh Dang
    COMPUTATIONAL SCIENCE AND ITS APPLICATIONS - ICCSA 2013, PT V, 2013, 7975 : 437 - 451
  • [3] Towards a flexible framework to support a generalized extension of XACML for spatio-temporal RBAC model with reasoning ability
    Tran Khanh Dang
    Tuyen Thi Kim Le
    Anh Tuan Dang
    Ha Duc Son Van
    INTERNATIONAL JOURNAL OF WEB INFORMATION SYSTEMS, 2014, 10 (02) : 131 - 150
  • [4] Based on Expand RBAC Grid Collaborative Design System Access Control Model
    Chen, Xuebin
    Duan, Guolin
    Cai, Jin
    ICHIT 2008: INTERNATIONAL CONFERENCE ON CONVERGENCE AND HYBRID INFORMATION TECHNOLOGY, PROCEEDINGS, 2008, : 217 - 221
  • [5] SC-RBAC: A Smart Contract based RBAC Model for DApps
    Ding, Yi
    Jin, Jun
    Zhang, Jinglun
    Wu, Zhongyi
    Hu, Kai
    HUMAN CENTERED COMPUTING, 2019, 11956 : 75 - 85
  • [6] A Hybrid Attribute based RBAC Model
    Cai, Ting
    Zheng, Jian
    Du, Xing
    INTERNATIONAL JOURNAL OF SECURITY AND ITS APPLICATIONS, 2015, 9 (07): : 317 - 328
  • [7] An Extended Delegation Model Based On RBAC
    Li, Jinshuang
    Chang, Guiran
    2008 INTERNATIONAL WORKSHOP ON INFORMATION TECHNOLOGY AND SECURITY, 2008, : 228 - 231
  • [8] Unified Access Management for Digital Evidence Storage: Integrating Attribute-based and Role-based Access Control with XACML
    Maulina, Ayu
    Rasjid, Zulfany Erlisa
    INTERNATIONAL JOURNAL OF ADVANCED COMPUTER SCIENCE AND APPLICATIONS, 2024, 15 (03) : 1345 - 1353
  • [9] Research and Application Based on RBAC Model
    Guo Xiaolai
    2011 INTERNATIONAL CONFERENCE ON ELECTRONICS, COMMUNICATIONS AND CONTROL (ICECC), 2011, : 388 - 391
  • [10] Design and Implementation of Authorization System Based on RBAC
    Li, Furong
    Wu, Haitao
    2015 7TH INTERNATIONAL CONFERENCE ON INTELLIGENT HUMAN-MACHINE SYSTEMS AND CYBERNETICS IHMSC 2015, VOL I, 2015, : 502 - 504
12345