Title :
Administration of an RBAC system
Author :
Dridi, Fredj ; Muschall, Björn ; Pernul, Günther
Author_Institution :
Dept. of Inf. Syst., Regensburg Univ., Germany
Abstract :
Recently RBAC (role-based access controls) was found to be among the most attractive solutions for providing access control in Web-based e-commerce and e-government applications. Usually, such systems involve a huge number of heterogeneous users working with the systems under different rights and obligations. In an RBAC authorization and access control system the users are assigned to roles which are derived from the organizational structure. Because of the huge amount of users and the diversity of their requirements the administration of a RBAC system becomes crucial. Our group is involved in the European funded Webocracy project in which we have designed and implemented an RBAC system based on the core RBAC model as defined in a proposed NIST standard. Based on the functional specification of the proposed NIST standard we specified administration requirements for managing roles, users and permissions we specified. In this paper, we will present an administration console, which we designed to implement this requirements.
Keywords :
Internet; access control; authorisation; formal specification; organisational aspects; NIST standard; RBAC authorization; RBAC system; Webocracy; administration console; administration requirement; functional specification; organizational structure; role-based access control; Access control; Authorization; Contracts; Control systems; Electronic government; Information security; Information systems; Knowledge management; NIST; Permission;
Conference_Titel :
System Sciences, 2004. Proceedings of the 37th Annual Hawaii International Conference on
Print_ISBN :
0-7695-2056-1
DOI :
10.1109/HICSS.2004.1265447
