UniSa - IRIS Institutional Research Information System
IRIS è la soluzione IT che facilita la raccolta e la gestione dei dati relativi alle attività e ai prodotti della ricerca. Fornisce a ricercatori, amministratori e valutatori gli strumenti per monitorare i risultati della ricerca, aumentarne la visibilità e allocare in modo efficace le risorse disponibili.
EnglishWe present an approach based on roles and access policies to improve security management of Web Applications. The approach first identifies the roles users have in the application, and then the software resources they can access based on the assigned role. Roles and resources are then used to design access policies by means of a visual language based tool providing a metaphor oriented layer above the well known Role Based Access Control (RBAC) model. A network infrastructure based on a Policy Enforcement Point (PEP) and a Policy Decision Point (PDP) is used to enforce these policies. The proposed approach has been used in a preliminary case study.
| Titolo: | Role Based Reengineering of Web Applications |
| Autori: | |
| Data di pubblicazione: | 2005 |
| Abstract: | We present an approach based on roles and access policies to improve security management of Web Applications. The approach first identifies the roles users have in the application, and then the software resources they can access based on the assigned role. Roles and resources are then used to design access policies by means of a visual language based tool providing a metaphor oriented layer above the well known Role Based Access Control (RBAC) model. A network infrastructure based on a Policy Enforcement Point (PEP) and a Policy Decision Point (PDP) is used to enforce these policies. The proposed approach has been used in a preliminary case study. |
| Handle: | http://hdl.handle.net/11386/1068953 |
| ISBN: | 0769524702 |
| Appare nelle tipologie: | 4.1.2 Proceedings con ISBN |
File in questo prodotto:
http://hdl.handle.net/11386/1068953
Copyright © 2020