Access control in e-Commerce applications by using state machines
Journal Title: Romanian Journal of Human - Computer Interaction - Year 2008, Vol 1, Issue 2
Abstract
The paper refers to a particular domain of authorization and proposes the SCAR-ACE model for role based access control in e-Commerce applications. Nowadays, there are an increasing number of Web applications that require authorization decisions. These applications include (but not limited to), e-Commerce applications, management and sharing of distributed resources, execution of downloaded code, etc. Authorizing these kinds of applications is significantly different of that of centralized systems and even of that of relatively small distributed systems. E-Commerce applications become increasingly more complex, requiring access to heterogeneous resources of users in different roles. Access control in e-Commerce applications is an important subject of nowadays scientific research. The current work proposes a safe model for role based access control without using cookies. The proposed model allows the access to system resources only for authorized users. In order to determine the flow and to control the access to the resources in a distributed application, is introduced the notion of role as an intermediary between a user and its permissions. Each role has attached a set of permissions (or privileges) to access the resources and operations. The model is validated by a set of tests and by experimental results.
Authors and Affiliations
Mihaela Ordean, Dorian Gorgan
Keywords
Related Articles
- EP ID EP28750
- DOI -
- Views 554
- Downloads 16
Task Modeling at Operational Level in the Context of Model-based Design
In the context of model-based design of user interfaces it is important to pay attention to the modelling of all relevant aspects as well as to the specification of relationships between models. The task model has a part...
eLearning Applications based on 3D Graphics Annotation Techniques
The graphics annotation in user interfaces, instead of classical radio buttons, check boxes and other controls, supports new interaction techniques that provide the user possibilities for free form presentation, highligh...
Sustaining Designers' and Users' Quality of Life in the Paradigm of Plastic UIs
Modern User Interfaces need to dynamically adapt to their context of use, i.e. mainly to the changes that occur in the environment or in the platform. Model-Driven Engineering offers powerful solutions to handle the desi...
Text-to-Speech Synthesys for Romanian Language
This paper aims to challenge the problem of finding accurate and relevant search algorithms in order to obtain the best audio output in terms of intelligibility and naturalness, the usually employed measures to describe...
Software tools for the analysis of subliminal testing tasks in facial microexpressions recognition
The facial microexpresions had been situated in the main stream of research for over 5 decades. Therefore, Eakman highlighted two main directions: the possibility to learn the facial microepressions and to learn how to...