武汉大学学报(英文版)
武漢大學學報(英文版)
무한대학학보(영문판)
WUHAN UNIVERSITY JOURNAL OF NATURAL SCIENCES
2006年
6期
1688-1692
,共5页
RBAC(role based access control)%federated%multi-domain
The secure interaction among multiple security domains is a major concern. In this paper, we highlight the issues of secure interoperability among multiple security domains operating under the widely accepted Role Based Access Control (RBAC) model. We propose a model called CRBAC that easily establishes a global policy for roles mapping among multiple security domains. Our model is based on an extension of the RBAC model. Also, multiple security domains were composed to one abstract security domain. Also roles in the multiple domains are translated to permissions of roles in the abstract security domain. These permissions keep theirs hierarchies. The roles in the abstract security domain implement roles mapping among the multiple security domains. Then, authorized users of any security domain can transparently access resources in the multiple domains.