Title :
On the minimality of testing for rights in transformation models
Author :
Sandhu, Ravi S. ; Ganta, Srinivas
Author_Institution :
Center for Secure Inf. Syst., George Mason Univ., Fairfax, VA, USA
Abstract :
Defines and analyzes a family of access control models, called transformation models, which are based on the concept of transformation of rights. In these models, propagation of access rights is authorized entirely by existing rights for the object in question. Transformation models are useful for expressing various kinds of consistency, confidentiality, and integrity controls. These models also generalize the monotonic transform model of Sandhu, and its non-monotonic extension (NMT) by Sandhu and Suri. The authors argue that NMT is inadequate for expressing the document release example discussed by Sandhu and Suri, because it can test only one access matrix cell in its state changing commands. They then analyze the relative expressive power of testing two access matrix cells in state changing commands versus testing more than two. The conclusion is that it suffices to allow testing for two cells
Keywords :
information systems; security of data; access control models; minimality of testing; monotonic transform model; propagation of access rights; testing for rights; transformation models; transformation of rights; Access control; Information analysis; Information systems; Permission; Pressing; Scanning probe microscopy; Software systems; Systems engineering and theory; Testing; Transmission line measurements;
Conference_Titel :
Research in Security and Privacy, 1994. Proceedings., 1994 IEEE Computer Society Symposium on
Conference_Location :
Oakland, CA
Print_ISBN :
0-8186-5675-1
DOI :
10.1109/RISP.1994.296578
