• DocumentCode
    1007694
  • Title

    RBAC Standard Rationale: Comments on "A Critique of the ANSI Standard on Role-Based Access Control"

  • Author

    Ferraiolo, David ; Kuhn, Rick ; Sandhu, Ravi

  • Author_Institution
    US Nat. Inst. of Stand. & Technol.
  • Volume
    5
  • Issue
    6
  • fYear
    2007
  • Firstpage
    51
  • Lastpage
    53
  • Abstract
    "For original paper see Ninghui Li et al., vol. 5, no. 6, p.41, (2007)". Some notion of roles for access control predates the research papers cited by the authors by at least a decade. Our work was designed to formalize RBAC and add features (such as hierarchies and constraints) to make it more useful to software developers and administrators. Extensive discussion of these and subsequent papers over many years led to the consensus standard for RBAC.
  • Keywords
    ANSI standards; authorisation; ANSI standard; RBAC standard; role-based access control standard; software developer; ANSI standards; Access control; Computer errors; Error correction; Information technology; International Committee; Proposals; Security; Standards development; Voting; RBAC; authorization; emerging standards; role-based access control; security; standards;
  • fLanguage
    English
  • Journal_Title
    Security & Privacy, IEEE
  • Publisher
    ieee
  • ISSN
    1540-7993
  • Type

    jour

  • DOI
    10.1109/MSP.2007.173
  • Filename
    4402447
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=1007694