ISSN : 1796-2056
Volume : 4    Issue : 4    Date : June 2009

A United Access Control Model for Systems in Collaborative Commerce
Ruo-Fei Han, Hou-Xiang Wang, Qian Xiao, Xiao-Pei Jing, and Hui Li
Page(s): 279-289
Full Text:
PDF (606 KB)

The latest researches on access control model are dramatically different from conventional ones.
Nowadays, most attention is paid to accessing across organizational boundaries. So, how to
identify the applicant and determine authorization with limited information; how to express and
exchange control rules expediently; how to protect confidential information and enhance
collaboration simultaneously, are the most concerned problems. However, for large commercial
organizations, a fine management of internal functions is of the same importance as external
service management. It is very troublesome to control authorizations merely with attributes and
composition of policies introduced from attribute-based access control (ABAC). So, we introduce a
united access control model for systems in collaborative commerce, combining the advantages of
conventional role-based access control (RBAC), task-based authentication control (TBAC) and that
of recent ABAC and automated trust negotiation (ATN). Innovational ideas in the model are analyzed,
and the implement architecture is discussed. The paper concludes with a summary of the united
model’s benefits and future work.

Index Terms
access control, collaborative commerce, service-oriented architecture, collaboration, negotiation