An Organization-Structure Oriented Access Control Model and It's Administration

An Organization-Structure Oriented Access Control Model and It's Administration

According to the hierarchical characteristic of real enterprise organization, an organization-structure oriented access control (OSOAC) policy is proposed. To formally describe the policy, the concept of organization domain is introduced and then the elements of access control are redefined. Based o...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Xiaolong Zhao, Yusen Zhang, Yingxun Zhu
Format: Tagungsbericht
Sprache:eng
Schlagworte:
Access control
Administration
ANSI standards
Automation
Control system synthesis
Electronic commerce
Military equipment
NIST
Organization-structure
Permission
Programmable logic arrays
Role instance
Standards publication
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
container_end_page 573
container_issue
container_start_page 569
container_title
container_volume
creator Xiaolong Zhao
Yusen Zhang
Yingxun Zhu
description According to the hierarchical characteristic of real enterprise organization, an organization-structure oriented access control (OSOAC) policy is proposed. To formally describe the policy, the concept of organization domain is introduced and then the elements of access control are redefined. Based on these elements, the core OSOAC model is formally defined. To assure that the administrative frame corresponds with real enterprise structure, the components of OSOAC model is decentralized administrated based on the OSOAC policy. Contrast to RBAC model, there are fewer roles and permission assignment relations in OSOAC model, which reduce the permission-management complexity in a large access control system.
doi_str_mv 10.1109/IEEC.2009.126
format Conference Proceeding
fullrecord <record><control><sourceid>ieee_6IE</sourceid><recordid>TN_cdi_ieee_primary_5175183</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><ieee_id>5175183</ieee_id><sourcerecordid>5175183</sourcerecordid><originalsourceid>FETCH-LOGICAL-i175t-d01c21433ca1c39827f0b9ab74be94509b04c90076a42086bbf251d82ac99be63</originalsourceid><addsrcrecordid>eNotj01LxDAYhAOyoK49evKSm6fWN0mb9j2WUnVhpQf1vCRpKpFuKkn2oL_e-jGXgRnmgSHkmkHBGODdru-7ggNgwbg8IxnWDdQSKyEbKTfk8qdCELLGc5LF-A6rBFZMigsytJ4O4U1596WSW3z-nMLJpFOwa-ysT3akrTE2RtotPoVlpk_LaGeq_Eh36TbSdjw672IKv_srspnUHG3271vyet-_dI_5fnjYde0-d6yuUj4CM5yVQhjFjMCG1xNoVLoutcWyAtRQGoT1hio5NFLriVdsbLgyiNpKsSU3f1xnrT18BHdU4fNQrXDWCPEN2EZOZQ</addsrcrecordid><sourcetype>Publisher</sourcetype><iscdi>true</iscdi><recordtype>conference_proceeding</recordtype></control><display><type>conference_proceeding</type><title>An Organization-Structure Oriented Access Control Model and It's Administration</title><source>IEEE Electronic Library (IEL) Conference Proceedings</source><creator>Xiaolong Zhao ; Yusen Zhang ; Yingxun Zhu</creator><creatorcontrib>Xiaolong Zhao ; Yusen Zhang ; Yingxun Zhu</creatorcontrib><description>According to the hierarchical characteristic of real enterprise organization, an organization-structure oriented access control (OSOAC) policy is proposed. To formally describe the policy, the concept of organization domain is introduced and then the elements of access control are redefined. Based on these elements, the core OSOAC model is formally defined. To assure that the administrative frame corresponds with real enterprise structure, the components of OSOAC model is decentralized administrated based on the OSOAC policy. Contrast to RBAC model, there are fewer roles and permission assignment relations in OSOAC model, which reduce the permission-management complexity in a large access control system.</description><identifier>ISBN: 9780769536866</identifier><identifier>ISBN: 0769536867</identifier><identifier>DOI: 10.1109/IEEC.2009.126</identifier><identifier>LCCN: 2009903679</identifier><language>eng</language><publisher>IEEE</publisher><subject>Access control ; Administration ; ANSI standards ; Automation ; Control system synthesis ; Electronic commerce ; Military equipment ; NIST ; Organization-structure ; Permission ; Programmable logic arrays ; Role instance ; Standards publication</subject><ispartof>2009 International Symposium on Information Engineering and Electronic Commerce, 2009, p.569-573</ispartof><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://ieeexplore.ieee.org/document/5175183$$EHTML$$P50$$Gieee$$H</linktohtml><link.rule.ids>309,310,776,780,785,786,2052,27902,54895</link.rule.ids><linktorsrc>$$Uhttps://ieeexplore.ieee.org/document/5175183$$EView_record_in_IEEE$$FView_record_in_$$GIEEE</linktorsrc></links><search><creatorcontrib>Xiaolong Zhao</creatorcontrib><creatorcontrib>Yusen Zhang</creatorcontrib><creatorcontrib>Yingxun Zhu</creatorcontrib><title>An Organization-Structure Oriented Access Control Model and It's Administration</title><title>2009 International Symposium on Information Engineering and Electronic Commerce</title><addtitle>IEEC</addtitle><description>According to the hierarchical characteristic of real enterprise organization, an organization-structure oriented access control (OSOAC) policy is proposed. To formally describe the policy, the concept of organization domain is introduced and then the elements of access control are redefined. Based on these elements, the core OSOAC model is formally defined. To assure that the administrative frame corresponds with real enterprise structure, the components of OSOAC model is decentralized administrated based on the OSOAC policy. Contrast to RBAC model, there are fewer roles and permission assignment relations in OSOAC model, which reduce the permission-management complexity in a large access control system.</description><subject>Access control</subject><subject>Administration</subject><subject>ANSI standards</subject><subject>Automation</subject><subject>Control system synthesis</subject><subject>Electronic commerce</subject><subject>Military equipment</subject><subject>NIST</subject><subject>Organization-structure</subject><subject>Permission</subject><subject>Programmable logic arrays</subject><subject>Role instance</subject><subject>Standards publication</subject><isbn>9780769536866</isbn><isbn>0769536867</isbn><fulltext>true</fulltext><rsrctype>conference_proceeding</rsrctype><creationdate>2009</creationdate><recordtype>conference_proceeding</recordtype><sourceid>6IE</sourceid><sourceid>RIE</sourceid><recordid>eNotj01LxDAYhAOyoK49evKSm6fWN0mb9j2WUnVhpQf1vCRpKpFuKkn2oL_e-jGXgRnmgSHkmkHBGODdru-7ggNgwbg8IxnWDdQSKyEbKTfk8qdCELLGc5LF-A6rBFZMigsytJ4O4U1596WSW3z-nMLJpFOwa-ysT3akrTE2RtotPoVlpk_LaGeq_Eh36TbSdjw672IKv_srspnUHG3271vyet-_dI_5fnjYde0-d6yuUj4CM5yVQhjFjMCG1xNoVLoutcWyAtRQGoT1hio5NFLriVdsbLgyiNpKsSU3f1xnrT18BHdU4fNQrXDWCPEN2EZOZQ</recordid><startdate>200905</startdate><enddate>200905</enddate><creator>Xiaolong Zhao</creator><creator>Yusen Zhang</creator><creator>Yingxun Zhu</creator><general>IEEE</general><scope>6IE</scope><scope>6IL</scope><scope>CBEJK</scope><scope>RIE</scope><scope>RIL</scope></search><sort><creationdate>200905</creationdate><title>An Organization-Structure Oriented Access Control Model and It's Administration</title><author>Xiaolong Zhao ; Yusen Zhang ; Yingxun Zhu</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-i175t-d01c21433ca1c39827f0b9ab74be94509b04c90076a42086bbf251d82ac99be63</frbrgroupid><rsrctype>conference_proceedings</rsrctype><prefilter>conference_proceedings</prefilter><language>eng</language><creationdate>2009</creationdate><topic>Access control</topic><topic>Administration</topic><topic>ANSI standards</topic><topic>Automation</topic><topic>Control system synthesis</topic><topic>Electronic commerce</topic><topic>Military equipment</topic><topic>NIST</topic><topic>Organization-structure</topic><topic>Permission</topic><topic>Programmable logic arrays</topic><topic>Role instance</topic><topic>Standards publication</topic><toplevel>online_resources</toplevel><creatorcontrib>Xiaolong Zhao</creatorcontrib><creatorcontrib>Yusen Zhang</creatorcontrib><creatorcontrib>Yingxun Zhu</creatorcontrib><collection>IEEE Electronic Library (IEL) Conference Proceedings</collection><collection>IEEE Proceedings Order Plan All Online (POP All Online) 1998-present by volume</collection><collection>IEEE Xplore All Conference Proceedings</collection><collection>IEEE Electronic Library (IEL)</collection><collection>IEEE Proceedings Order Plans (POP All) 1998-Present</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>Xiaolong Zhao</au><au>Yusen Zhang</au><au>Yingxun Zhu</au><format>book</format><genre>proceeding</genre><ristype>CONF</ristype><atitle>An Organization-Structure Oriented Access Control Model and It's Administration</atitle><btitle>2009 International Symposium on Information Engineering and Electronic Commerce</btitle><stitle>IEEC</stitle><date>2009-05</date><risdate>2009</risdate><spage>569</spage><epage>573</epage><pages>569-573</pages><isbn>9780769536866</isbn><isbn>0769536867</isbn><abstract>According to the hierarchical characteristic of real enterprise organization, an organization-structure oriented access control (OSOAC) policy is proposed. To formally describe the policy, the concept of organization domain is introduced and then the elements of access control are redefined. Based on these elements, the core OSOAC model is formally defined. To assure that the administrative frame corresponds with real enterprise structure, the components of OSOAC model is decentralized administrated based on the OSOAC policy. Contrast to RBAC model, there are fewer roles and permission assignment relations in OSOAC model, which reduce the permission-management complexity in a large access control system.</abstract><pub>IEEE</pub><doi>10.1109/IEEC.2009.126</doi><tpages>5</tpages></addata></record>
fulltext fulltext_linktorsrc
identifier ISBN: 9780769536866
ispartof 2009 International Symposium on Information Engineering and Electronic Commerce, 2009, p.569-573
issn
language eng
recordid cdi_ieee_primary_5175183
source IEEE Electronic Library (IEL) Conference Proceedings
subjects Access control
Administration
ANSI standards
Automation
Control system synthesis
Electronic commerce
Military equipment
NIST
Organization-structure
Permission
Programmable logic arrays
Role instance
Standards publication
title An Organization-Structure Oriented Access Control Model and It's Administration
url https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-02-16T02%3A28%3A32IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-ieee_6IE&rft_val_fmt=info:ofi/fmt:kev:mtx:book&rft.genre=proceeding&rft.atitle=An%20Organization-Structure%20Oriented%20Access%20Control%20Model%20and%20It's%20Administration&rft.btitle=2009%20International%20Symposium%20on%20Information%20Engineering%20and%20Electronic%20Commerce&rft.au=Xiaolong%20Zhao&rft.date=2009-05&rft.spage=569&rft.epage=573&rft.pages=569-573&rft.isbn=9780769536866&rft.isbn_list=0769536867&rft_id=info:doi/10.1109/IEEC.2009.126&rft_dat=%3Cieee_6IE%3E5175183%3C/ieee_6IE%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_id=info:pmid/&rft_ieee_id=5175183&rfr_iscdi=true