Consistency Checking of Role Assignments in Inter-Organizational Collaboration

Paul El Khoury 1 Emmanuel Coquery 1 Mohand-Said Hacid 1
1 BD - Base de Données
LIRIS - Laboratoire d'InfoRmatique en Image et Systèmes d'information
Abstract : The establishment of globalization is driving inter-organizational collaboration towards a necessity. We cannot expect total conformity between organizations nor homogeneous security settings. Nevertheless, each organization, with its own security policies, need to exchange data. Employees involved in inter-organizational tasks shall require remote access to data hosted by other organizations. Administrating access control policies for those employees creates problems for security officers, particularly for role assignments. Flexibility in extending (or restricting) permissions for roles imported from other organizations should be scalable. In this work, we present an approach based on Description Logic formalisms to create from the inter-organizational agreement a set of bridge rules3 that in addition to (i) the permissions assigned to a given role from one organization and (ii) the permissions assigned to another role in the other organization, allows security officers to check consistency of the resulting combination of roles from both organizations.
Document type :
Conference papers
Complete list of metadatas
Contributor : Équipe Gestionnaire Des Publications Si Liris <>
Submitted on : Monday, September 4, 2017 - 2:04:32 PM
Last modification on : Friday, January 11, 2019 - 4:52:20 PM



Paul El Khoury, Emmanuel Coquery, Mohand-Said Hacid. Consistency Checking of Role Assignments in Inter-Organizational Collaboration. Geographic Information System, Proceedings of the SIGSPATIAL ACM GIS 2008 International Workshop on Security and Privacy in GIS and LBS, Nov 2008, Irvine, California, United States. pp.82-88, ⟨10.1145/1503402.1503417⟩. ⟨hal-01581164⟩



Record views