DocumentCode :
1705380
Title :
RBAC Permission Consistency Static Analysis Framework
Author :
Wang Tao ; Li Wei-hua ; Liu Zun
Author_Institution :
Sch. of Comput. Sci. & Technol., Northwestern Polytech. Univ., Xi´an, China
fYear :
2010
Firstpage :
506
Lastpage :
510
Abstract :
Role-Based Access Control (RBAC) is a mainstream access control method of software systems. After RBAC policies are formulated, there may be permission inconsistency between RBAC policies and practical execution paths. First, we defined the concept of RBAC permission consistency, and the concepts of execution path, Role Requirement array and Role Holding vector etc. On this basis, we proposed RBAC Permission Consistency Static Analysis Framework, proposed and proved permission consistency decision and Least Privilege principle decision theorems. This paper´s contributions include providing theoretical framework of RBAC permission consistency verification, and providing a methodology for decision of Least Privilege principle.
Keywords :
authorisation; program diagnostics; RBAC; least privilege principle; mainstream access control; permission consistency; principle decision theorem; role holding; role requirement; role-based access control; software system; static analysis; Access control; Arrays; Complexity theory; Computers; Presses; XML; Least Privilege principle; access control; permission consistency; static analysis;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Multimedia Information Networking and Security (MINES), 2010 International Conference on
Conference_Location :
Nanjing, Jiangsu
Print_ISBN :
978-1-4244-8626-7
Electronic_ISBN :
978-0-7695-4258-4
Type :
conf
DOI :
10.1109/MINES.2010.113
Filename :
5671093
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=1705380
بازگشت