مرکز منطقه ای اطلاع رساني علوم و فناوري - Rule-based RBAC with negative authorization

DocumentCode :

2274697

Title :

Rule-based RBAC with negative authorization

Author :

Al-Kahtani, Mohammad A. ; Sandhu, Ravi

fYear :

2004

fDate :

6-10 Dec. 2004

Firstpage :

405

Lastpage :

415

Abstract :

RBAC has proven to be a flexible and useful access control model in practice. Rule-Based RBAC family of models was developed based on RBAC to overcome some of its limitations. One particular model of this family, which we call RB-RBAC-ve, introduces the concept of negative authorization to the RBAC arena. This paper provides a more detailed analysis of RB-RBAC-ve. The analysis includes user authorization, conflict among rules, conflict resolution polices, the impact of negative authorization on role hierarchies and enforcement architecture.

Keywords :

authorisation; enforcement architecture; negative authorization; role hierarchies; role-based access control; rule-based RBAC; Access control; Authorization; Automation; Business; Companies; Computer errors; Computer security; Costs; Permission; Web and internet services;

fLanguage :

English

Publisher :

ieee

Conference_Titel :

Computer Security Applications Conference, 2004. 20th Annual

ISSN :

1063-9527

Print_ISBN :

0-7695-2252-1

Type :

conf

DOI :

10.1109/CSAC.2004.32

Filename :

1377248

Link To Document :

https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=2274697