Access-Control Model of Super Business System Based on Business Entity

• Published in: Electronics (Basel) Vol. 11; no. 19; p. 3073
• Main Authors: Zhao, Bin, Zheng, Guiyue, Gao, Yilong, Zhao, Yanchen
• Format: Journal Article
• Language: English
• Published: Basel MDPI AG 01.10.2022
• Subjects: Access control; Blockchain; Business enterprises; Constraint modelling; Data security; Efficiency; Information technology; Internet of Things; Methods; Mobile applications; Security; Technology application; User behavior; Workflow; China
• ISSN: 2079-9292; 2079-9292
• DOI: 10.3390/electronics11193073

To address the problem that the traditional access-control model is no longer suitable for access control and authorization in the super business system—which has the characteristics of many businesses and complex permissions—a business entity-based access-control model (BE-BAC) is proposed in this paper. The BE-BAC model realizes the relationship between users, business entities, and business permissions. Firstly, according to the characteristics of the super business system, the concept of business entity is put forward, introducing the composition and relationship of the business entity. Secondly, the business entity is introduced into the access-control model, formally describing the basic relationship, constraint, mapping, and authorization strategy of the BE-BAC model. Finally, the access-control workflow, based on the business entity, is designed, and the security analysis and comprehensive comparison of the model are carried out. Compared with the existing access-control model, the BE-BAC model has higher security and flexibility, and better protects resources, through more secure access-request decisions.