X-RDR: A role-based delegation processor for Web-based information systems

Shihyu Chou*, Eric Jui Lin Lu, Yi Hui Chen

*Corresponding author for this work

Research output: Contribution to journalJournal Article peer-review

4 Scopus citations


Although Web-based information systems (WISs) have been widely used by enterprises to accomplish business tasks through the Internet, there is little research on designing a flexible access control and delegation model for WISs. In this paper, we design a user-to-user and role-to-role delegation model (called X-RDR model) for WISs. The authorization and delegation policies are encoded in XML and the granularity of control can be as small as a text-field or button. Additionally, the proposed model supports single-step delegation, multi-step delegation, multiple delegation, partial delegation, separation of duties, and cascading revocation. A prototype was also implemented to demonstrate the feasibility of the proposed model.

Original languageEnglish
Pages (from-to)4-21
Number of pages18
JournalOperating Systems Review (ACM)
Issue number1
StatePublished - 2005
Externally publishedYes


  • Delegation
  • Granular access control
  • WIS
  • XML


Dive into the research topics of 'X-RDR: A role-based delegation processor for Web-based information systems'. Together they form a unique fingerprint.

Cite this