Title :
Team and Task Based RBAC Access Control Model
Author :
Zhou, Wei ; Meinel, Christoph
Author_Institution :
Potsdam Univ., Potsdam
Abstract :
In this paper, we introduce a new paradigm for access control and authorization management, called team and task based RBAC (TT-RBAC). TT-RBAC model extends the NIST RBAC model through adding sets of two basic data elements called teams and tasks. This model as a whole is fundamentally defined in terms of individual users being assigned to roles and teams, roles and tasks being assigned to teams, and permissions being assigned to roles and tasks. By virtue of team membership, users get access to team´s resources specified by assigned tasks. However, for each user, the exact privilege he/she obtains from a team is determined by his/her roles and the current activity of the team. So TT-RBAC model can provide more flexibility than the traditional RBAC model. Context-based TT-RBAC entity activation makes TT-RBAC belonging to an active security model.
Keywords :
authorisation; RBAC access control model; active security model; authorization management; team and task based RBAC; Access control; Application software; Authorization; Collaboration; Collaborative work; Context modeling; Distributed computing; Information security; NIST; Permission; RBAC; access control; authorization management; context constraint;
Conference_Titel :
Network Operations and Management Symposium, 2007. LANOMS 2007. Latin American
Conference_Location :
Rio de Janeiro
Print_ISBN :
978-1-4244-1182-5
Electronic_ISBN :
978-1-4244-1182-5
DOI :
10.1109/LANOMS.2007.4362463
