Access control in e-Commerce applications by using state machines

Journal Title: Romanian Journal of Human - Computer Interaction - Year 2008, Vol 1, Issue 2

Abstract

The paper refers to a particular domain of authorization and proposes the SCAR-ACE model for role based access control in e-Commerce applications. Nowadays, there are an increasing number of Web applications that require authorization decisions. These applications include (but not limited to), e-Commerce applications, management and sharing of distributed resources, execution of downloaded code, etc. Authorizing these kinds of applications is significantly different of that of centralized systems and even of that of relatively small distributed systems. E-Commerce applications become increasingly more complex, requiring access to heterogeneous resources of users in different roles. Access control in e-Commerce applications is an important subject of nowadays scientific research. The current work proposes a safe model for role based access control without using cookies. The proposed model allows the access to system resources only for authorized users. In order to determine the flow and to control the access to the resources in a distributed application, is introduced the notion of role as an intermediary between a user and its permissions. Each role has attached a set of permissions (or privileges) to access the resources and operations. The model is validated by a set of tests and by experimental results.

Authors and Affiliations

Mihaela Ordean, Dorian Gorgan

Keywords

Related Articles

A Multidimensional Model of the Usefulness of Facebook for University Students

The popularity of social networking websites among university students stimulated the interest for studying the potential of use for educational purposes. The objective of this study is to test and validate a multidimens...

The Components Of A Text To Speech System

Converting words from written form into speakable forms strongly influences the performance of a text-to-speech (TTS) system. The text analysis component of a TTS system is responsible for parsing the language structure...

DAISY – Digital Audio Books Accessible for Persons with Visual Impairment and with Reading Difficulties

Synchronizing the text and audio files according to the DAISY standards, allows visually impaired persons to read a scientific book in similar conditions as a person with no disability. In this paper, we present the DAIS...

Software for Access of Persons with Disabilities to Scientific Content

For people with visual impairments, especially for the blind persons, the access to scientific content raises issues of accessibility both to reading web documents, which contain specific elements of mathematics as image...

Ranking of comments published on YouTube using natural language processing techniques

Publishing of comments is a form of interaction that has become an important part of the Social Web phenomenon. Comments are enhancing online interaction, however their visualization and ranking becomes extremely difficu...

Download PDF file
  • EP ID EP28750
  • DOI -
  • Views 501
  • Downloads 16

How To Cite

Mihaela Ordean, Dorian Gorgan (2008). Access control in e-Commerce applications by using state machines. Romanian Journal of Human - Computer Interaction, 1(2), -. https://europub.co.uk/articles/-A-28750