Security access control policy of information system under multi-domain mode
by Jun Dong; Qiang Zhao
International Journal of Internet Protocol Technology (IJIPT), Vol. 11, No. 1, 2018

Abstract: The research of this article is ensuring the security implementation of multi-domain secure access control behaviour, through the study on unified description language for security policy, strategy conflict classification and strategy conflict detection. Based on current related technologies and combined with the feature of multi-domain system, the framework of access control strategy management is proposed, which specified the content of access control management. We adopt XACML that has better across-platform and scalability to describe the policy uniformly. Then access control policy description template based on XACML is provided and the security policy conflict is classified reasonably according to the factors causing conflict. Then we put forward a model to detect the inconsistency of RBAC and RH in time and space constraint, to design an access control model which needs pruning and collection. It uses logic analysis to strength the conflict detection for developing security policy integration. The simulation shows our work can provide filter on quantities of irrelevant policy and return potential policies to solute the conflict.

Online publication date: Fri, 04-May-2018

The full text of this article is only available to individual subscribers or to users at subscribing institutions.

Existing subscribers:
Go to Inderscience Online Journals to access the Full Text of this article.

Pay per view:
If you are not a subscriber and you just want to read the full contents of this article, buy online access here.

Complimentary Subscribers, Editors or Members of the Editorial Board of the International Journal of Internet Protocol Technology (IJIPT):
Login with your Inderscience username and password:

    Username:        Password:         

Forgotten your password?

Want to subscribe?
A subscription gives you complete access to all articles in the current issue, as well as to all articles in the previous three years (where applicable). See our Orders page to subscribe.

If you still need assistance, please email