The design of the secure transmission and authorization management system based on RBAC
Title | The design of the secure transmission and authorization management system based on RBAC |
Publication Type | Conference Paper |
Year of Publication | 2014 |
Authors | Gvoqing Lu, Lingling Zhao, Kuihe Yang |
Conference Name | Machine Learning and Cybernetics (ICMLC), 2014 International Conference on |
Date Published | July |
Keywords | Abstracts, Aspect-oriented programming, authorisation, Authorization, authorization management system, centralized authority, certificate authority system, client-side digital certificate, data secure transmission, Digital certificate, distributed authority management, E-Government, Electronic government, group authority, identity authentication, Internet, MVC model, PKI, PKI principles, public key cryptography, public key infrastructure, RBAC model, RBACt, Rose-based access control, server-side digital certificate, SSL protocol |
Abstract | This paper designs a secure transmission and authorization management system which based on the principles of Public Key Infrastructure and Rose-Based Access Control. It can solve the problems of identity authentication, secure transmission and access control on internet. In the first place, according to PKI principles, certificate authority system is implemented. It can issue and revoke the server-side and client-side digital certificate. Data secure transmission is achieved through the combination of digital certificate and SSL protocol. In addition, this paper analyses access control mechanism and RBAC model. The structure of RBAC model has been improved. The principle of group authority is added into the model and the combination of centralized authority and distributed authority management is adopted, so the model becomes more flexible. |
DOI | 10.1109/ICMLC.2014.7009100 |
Citation Key | 7009100 |
- group authority
- SSL protocol
- server-side digital certificate
- Rose-based access control
- RBACt
- RBAC model
- public key infrastructure
- public key cryptography
- PKI principles
- PKI
- MVC model
- internet
- identity authentication
- Abstracts
- Electronic government
- E-Government
- distributed authority management
- Digital certificate
- data secure transmission
- client-side digital certificate
- certificate authority system
- centralized authority
- authorization management system
- authorization
- authorisation
- Aspect-oriented programming