H
Hong Fan
Researcher at Huazhong University of Science and Technology
Publications - 6
Citations - 199
Hong Fan is an academic researcher from Huazhong University of Science and Technology. The author has contributed to research in topics: Web service & Role-based access control. The author has an hindex of 3, co-authored 6 publications receiving 196 citations.
Papers
More filters
Proceedings ArticleDOI
An Attribute-Based Access Control Model for Web Services
Shen Hai-bo,Hong Fan +1 more
TL;DR: An attribute-based access control model (WS-ABAC) is presented to address the issues of administrative scalability and control granularity in access control systems, and can provide administratively scalable alternative to identity-based authorization methods and provide fine-grained access control for Web services.
Proceedings ArticleDOI
A context-aware role-based access control model for Web services
Shen Hai-bo,Hong Fan +1 more
TL;DR: A context-aware role-based access control model (CGRBAC) that introduces global roles which are used in the mapping to local roles of other services providers and outlines the configuration mechanism needed to apply the model to the Web services environment.
Journal Article
Analysis of Cross-domain SSO Authentication for Web Services
Shen Hai-bo,Hong Fan +1 more
TL;DR: Analyzes weightily WS-Federation based cross-domain single sign-on authentication for Web Services, and discusses its security issues.
Proceedings ArticleDOI
Administrative Usage Control Model for Secure Interoperability
Hong Fan,Cui Yongquan +1 more
TL;DR: An improved administrative usage control model named AUCON is proposed to overcome the weakness of previous models and provides flexible enough mechanism to distinguish users of foreign and local domain and can enforce more strict control for foreign user.
Journal Article
ABAC model based on XACML in Web Service
Shen Hai-bo,Hong Fan +1 more
TL;DR: An ABAC(Attribute-Based Access Control) model based on XACML in Web Service was presented, which adopted the authorization mechanism based on user, resource and environment attributes, but not user identity.