[LP09c] FI-ORBAC : A Model of Access control for federated identity platform

Conférence Internationale avec comité de lecture : IADIS 2009, the International Conference on Information System, February 2009, Barcelona, SPAIN,

Mots clés: Fédération d'identités, systèmes de systèmes

Résumé: In the information security field, the issue of access control is a crucial element. This access control is governed by a security policy that defines precisely the authorized actions for all actors in an information system. This step is necessary and constitutes a fundamental brick for the protection, confidentiality and integrity of information. This has more magnitude in the case of federated identity infrastructure (FII). In this article, we focus mainly on information and communication systems dedicated to the federated identity platform. We propose a new approach to treat the operational and security problems faced by an FII, particularly those related to access control and collaboration. The objective is to extend OrBAC with the concepts required to deploy and administer the model in distributed organizations. More precisely, the following problems have to be addressed: consistency of the access rules to be deployed, distribution of the access right control, distribution of the access right administration and characterization of the trusted components that need to be integrated in the global architecture to secure it.

Commentaires: ISBN: 978-972-8924-79-9

Equipe: vespa
Collaboration: INSAT


@inproceedings {
title="{FI-ORBAC : A Model of Access control for federated identity platform}",
author=" F. Layouni and Y. Pollet ",
booktitle="{IADIS 2009, the International Conference on Information System}",
address="Barcelona, SPAIN",
note="{ISBN: 978-972-8924-79-9}",