Title :
Obligation Constraints in Access Control
Author :
Wu, Zongda ; Lu, Jianfeng ; Lu, Chenglang
Author_Institution :
Oujiang Coll., Wenzhou Univ., Wenzhou, China
Abstract :
We introduce the notion of obligation constraints in the context of access control systems. Such constraints requires that in order to have all permissions necessary to complete a sensitive task, the cooperation of at least a certain number of users is required. In this paper, we formally define the notion of obligation constraints, strict obligation constraints, and introduce the obligation satisfy checking problem (OSCP), which asks whether an access control state satisfies a given obligation constraint, and show that it is intractable (NP-complete). We present an improvement algorithm for OSCP, the algorithm uses preprocessing and static pruning techniques that reduce the number of users that need to be considered. Furthermore, we design and evaluate an improvement algorithm for solving OSCP.
Keywords :
algorithm theory; authorisation; access control state; access control system; improvement algorithm; obligation constraint; obligation satisfy checking problem; static pruning; Algorithm design and analysis; Authorization; Context; Polynomials; Safety; Obligation constraint; access control; computational complexity;
Conference_Titel :
Multimedia Information Networking and Security (MINES), 2010 International Conference on
Conference_Location :
Nanjing, Jiangsu
Print_ISBN :
978-1-4244-8626-7
Electronic_ISBN :
978-0-7695-4258-4
DOI :
10.1109/MINES.2010.77
