100 likes | 266 Views
CBAC C oalition- B ased A ccess C ontrol. CBAC: “?”. Aim:- an access control model for organizations to effectively participate in modern coalitions and enforcement mechanisms for coalition resources.
E N D
CBACCoalition-Based Access Control Vishwas Patil, TIFR.
CBAC: “?” • Aim:- an access control model for organizations to effectively participate in modern coalitions and enforcement mechanisms for coalition resources. • Secure sharing requires that organizations be able to exercise fine-grained, policy-governed control over access to shared resources. Vishwas Patil, TIFR.
CBAC: Principles • RBAC has limited role while addressing security policy enforcement issues in collaborative environments. • CBAC captures the entities involved in coalition resource sharing, identify the relationships among those entities, and detail requirements for building authorizations in coalition environments. Vishwas Patil, TIFR.
CBAC: Approach • Basic CBAC model layers coalition access control concepts on top of a simple RBAC model. • Other CBAC models incorporate elements of TMAC and TBAC,which support the use of system context information in decisions to activate, synchronize and deactivate permissions. • Figure 1, 2, and 3 show the different perspectives of various coalition stake-holders on coalition activities and resources. Vishwas Patil, TIFR.
CBAC: Coalition Components • Coalition-level entities • COALITION, PARTNERORGANIZATION, PRINCIPALFUNCTION etc. • Organization-level entities • ORGANIZATION, ORGANIZATIONRESOURCE, ORGANIZATIONASSET, ROLE, TEAM, TASK etc. • Operations-level entities • USER etc. Vishwas Patil, TIFR.
CBAC: Models • CBACbasic • CBACteam • CBACtask • CBACteam+task Vishwas Patil, TIFR.
CBAC: Discussion • How different from RBAC? • Advantages/disadvantages Vishwas Patil, TIFR.