Administration of an RBAC system

Author

Dridi, Fredj ; Muschall, Björn ; Pernul, Günther

Author_Institution

Dept. of Inf. Syst., Regensburg Univ., Germany

fYear

2004

fDate

5-8 Jan. 2004

Abstract

Recently RBAC (role-based access controls) was found to be among the most attractive solutions for providing access control in Web-based e-commerce and e-government applications. Usually, such systems involve a huge number of heterogeneous users working with the systems under different rights and obligations. In an RBAC authorization and access control system the users are assigned to roles which are derived from the organizational structure. Because of the huge amount of users and the diversity of their requirements the administration of a RBAC system becomes crucial. Our group is involved in the European funded Webocracy project in which we have designed and implemented an RBAC system based on the core RBAC model as defined in a proposed NIST standard. Based on the functional specification of the proposed NIST standard we specified administration requirements for managing roles, users and permissions we specified. In this paper, we will present an administration console, which we designed to implement this requirements.

Keywords

Internet; access control; authorisation; formal specification; organisational aspects; NIST standard; RBAC authorization; RBAC system; Webocracy; administration console; administration requirement; functional specification; organizational structure; role-based access control; Access control; Authorization; Contracts; Control systems; Electronic government; Information security; Information systems; Knowledge management; NIST; Permission;

fLanguage

English

Publisher

ieee

Conference_Titel

System Sciences, 2004. Proceedings of the 37th Annual Hawaii International Conference on

Print_ISBN

0-7695-2056-1

Type

conf

DOI

10.1109/HICSS.2004.1265447

Filename

1265447