Skip to Main Content
This paper proposes a request-driven role mapping framework for secure interoperation in multi-domain environment. To support flexible policy expression and inter-domain policy mapping, we propose a more convenient and effective method to complete the privilege query in a general hybrid role hierarchy for all special external requests. To describe the practical relationship between roles, we partition the role- mappings into three types. These mappings describe the forms of the hierarchy between the mapping roles respectively. With our analysis, for the conflicts which arise from the role-mapping among multi-domains, the effective way is to choose a suitable type of role mapping.