By Topic

An Organization-Structure Oriented Access Control Model and It's Administration

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

Formats Non-Member Member
$33 $13
Learn how you can qualify for the best price for this item!
Become an IEEE Member or Subscribe to
IEEE Xplore for exclusive pricing!
close button

puzzle piece

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

3 Author(s)
Xiaolong Zhao ; Sch. of Command Autom., PLA Univ. of Sci. & Technol., Nanjing, China ; Yusen Zhang ; Yingxun Zhu

According to the hierarchical characteristic of real enterprise organization, an organization-structure oriented access control (OSOAC) policy is proposed. To formally describe the policy, the concept of organization domain is introduced and then the elements of access control are redefined. Based on these elements, the core OSOAC model is formally defined. To assure that the administrative frame corresponds with real enterprise structure, the components of OSOAC model is decentralized administrated based on the OSOAC policy. Contrast to RBAC model, there are fewer roles and permission assignment relations in OSOAC model, which reduce the permission-management complexity in a large access control system.

Published in:

Information Engineering and Electronic Commerce, 2009. IEEC '09. International Symposium on

Date of Conference:

16-17 May 2009