Cross-Domain Access Control Encryption: Arbitrary-policy, Constant-size, Efficient

2020 ◽

Vol 30 (11n12) ◽

pp. 1851-1865

Author(s):

Yunpeng Zhang ◽

Xin Liu

Keyword(s):

Access Control ◽

Domain Boundary ◽

Control Process ◽

Control Model ◽

Main Trend ◽

Security Risk ◽

Access Control Model ◽

Policy Model ◽

Cross Domain ◽

Autonomous Network

The distributed multiple autonomous network has become the main trend of modern information systems, such as Cloud, Service-Oriented Architecture (SOA) and Internet of Things (IoT). Access control in such a heterogeneous and dynamic system has become a major information security challenge, which hinders the sharing of resources and information. In this work, we present an Attribute-Based Access Control (ABAC) model for cross-domain access control. The proposed access control model comprises a boundary control server designed to provide cross-domain access control capability. An eXtensible Access Control Markup Language (XACML) policy model-based implementation is introduced. Process and implementation show the proposed model alleviates the security risk on the domain boundary during the cross-domain access control process.

Download Full-text

Attribute mapping for cross-domain access control

2010 International Conference on Computer and Information Application ◽

10.1109/iccia.2010.6141607 ◽

2010 ◽

Cited By ~ 2

Author(s):

Yi-Hong Long ◽

Zhi-Hong Tang ◽

Xu Liu

Keyword(s):

Access Control ◽

Cross Domain

Download Full-text

Secure Authorisation Agent for Cross-Domain Access Control in a Mobile Computing Environment

Information Security and Cryptology — ICISC 2001 - Lecture Notes in Computer Science ◽

10.1007/3-540-45861-1_28 ◽

2002 ◽

pp. 369-381 ◽

Cited By ~ 2

Author(s):

Richard Au ◽

Mark Looi ◽

Paul Ashley ◽

Loo Tang Seet

Keyword(s):

Access Control ◽

Mobile Computing ◽

Computing Environment ◽

Cross Domain ◽

Mobile Computing Environment

Download Full-text

Multi-Authority CP-ABE-Based user access control scheme with constant-size key and ciphertext for IoT deployment

Journal of Information Security and Applications ◽

10.1016/j.jisa.2020.102503 ◽

2020 ◽

Vol 53 ◽

pp. 102503 ◽

Cited By ~ 1

Author(s):

Soumya Banerjee ◽

Sandip Roy ◽

Vanga Odelu ◽

Ashok Kumar Das ◽

Samiran Chattopadhyay ◽

...

Keyword(s):

Access Control ◽

Constant Size ◽

Control Scheme ◽

User Access

Download Full-text

A Fine-Grained Cross-Domain Access Control Mechanism for Social Internet of Things

2014 IEEE 11th Intl Conf on Ubiquitous Intelligence and Computing and 2014 IEEE 11th Intl Conf on Autonomic and Trusted Computing and 2014 IEEE 14th Intl Conf on Scalable Computing and Communications and Its Associated Workshops ◽

10.1109/uic-atc-scalcom.2014.140 ◽

2014 ◽

Cited By ~ 2

Author(s):

Jun Wu ◽

Mianxiong Dong ◽

Kaoru Ota ◽

Jianhua Li ◽

Bei Pei

Keyword(s):

Internet Of Things ◽

Access Control ◽

Control Mechanism ◽

Fine Grained ◽

Cross Domain ◽

Social Internet Of Things ◽

Access Control Mechanism

Download Full-text

CSCAC: one constant-size CPABE access control scheme in trusted execution environment

International Journal of Computational Science and Engineering ◽

10.1504/ijcse.2019.10021976 ◽

2019 ◽

Vol 19 (2) ◽

pp. 162

Author(s):

Xiaodong Lin ◽

Shengle Liu ◽

Gang Tan ◽

Yongkai Fan

Keyword(s):

Access Control ◽

Constant Size ◽

Control Scheme ◽

Execution Environment ◽

Trusted Execution Environment

Download Full-text

Cross-domain access control via PKI

Proceedings Third International Workshop on Policies for Distributed Systems and Networks ◽

10.1109/policy.2002.1011308 ◽

2003 ◽

Cited By ~ 7

Author(s):

G. Denker ◽

J. Millen ◽

Y. Miyake

Keyword(s):

Access Control ◽

Cross Domain

Download Full-text

A Cross-Domain Access Control Method for Large Organizations

Applied Mechanics and Materials ◽

10.4028/www.scientific.net/amm.513-517.941 ◽

2014 ◽

Vol 513-517 ◽

pp. 941-946 ◽

Cited By ~ 1

Author(s):

Chao Wang ◽

Ji Zhou Chen ◽

Yu Jun Liu ◽

An Qi Li

Keyword(s):

Information Systems ◽

Access Control ◽

Control Method ◽

Dynamic Mechanism ◽

Security Threats ◽

Rule Based ◽

Cross Domain ◽

System Realization ◽

Global Strategies ◽

Large Enterprises

In order to eliminate the security threats faced by the information systems of large organizations which usually involve multiple autonomous domains, this paper introduces an architecture of access control collaboration, which takes a distributed authoritative domain as the leading core of the unified cross-domain access control. Through applying the ABAC model in the authoritative domain, the global strategies formulated by the authoritative domain can be compatible with those local strategies of each autonomous domain. The global strategies are designed to be described by a group of authoritative attributes, which are limited in quantity but adequate to generalize all the subjects within the global scope. For system realization, a rule-based dynamic mechanism of attributes conversion is used to automatically generate the information of authoritative attributes. The cross-domain access control method in this paper can be directly applied to typical large organizations, such as government, military and large enterprises.

Download Full-text