IMPLEMENTING RBAC POLICIES IN A WEB SERVER
||Sanz, Daniel; Diaz, Paloma; Aedo, Ignacio
||IMPLEMENTING RBAC POLICIES IN A WEB SERVER
||elpub2002 - Technology Interactions. Proceedings of the 6th International ICCC/IFIP Conference on Electronic Publishing held in Karlovy Vary, Czech Republic, 6–8 November 2002. Editors: Carvalho, Joao Álvaro; Hübler, Arved; Baptista, Ana Alice. Publisher: VWF Berlin, 2002. ISBN 3-89700-357-0. 395 pages.
||Security is a key requirement in multi-user hypermedia systems, where the ability of different users to access and manipulate the information depend on their needs and responsibilities. If security policies are specified in terms of individual users and low-level abstractions not related to the hypermedia domain, security administration becomes complex and prone to error. This paper describes how an RBAC (Role Based Access Control) module is integrated into a web server that is treated as a hypermedia system instead of as a set of files, programs and network protocols. This implies the definition of a set of hypermedia related operations that authorised roles can execute on the system objects.
||file.pdf (2,259,475 bytes)
Post discussion ...
These pages are best viewed with any standards compliant browser (e.g. Mozilla).