Title :
A Role and Activity Based Access Control Model for University Identity and Access Management System
Author :
Zheng, Shuliang ; Jiang, Dongxing ; Liu, Qixin
Author_Institution :
Comput. & Inf. Manage. Center, Tsinghua Univ., Beijing, China
Abstract :
Although RBAC model has received broad support as a generalized access control solution, it has several innate limitations. We propose a role and activity based access control model called R-ABAC, which extends the traditional RBAC model with the notion of participation, act and activity. An activity is an abstraction of the application environment, and organizes participations and acts as a digraph for expressing dependency of activity steps, as well as containing rich context information such as time, location and system status. An implementation of R-ABAC model has been applied to a university unified identity and access management system (UIAMS).
Keywords :
authorisation; directed graphs; educational administrative data processing; R-ABAC; access management system; activity based access control model; context information; digraph; role based access control model; university unified identity; Access control; Authorization; Collaboration; Computer security; Conference management; Context modeling; Identity management systems; Information management; Information security; Permission;
Conference_Titel :
Information Assurance and Security, 2009. IAS '09. Fifth International Conference on
Conference_Location :
Xi´an
Print_ISBN :
978-0-7695-3744-3
DOI :
10.1109/IAS.2009.43
