Title :
How to Use Events and Rules for Supporting Role-Based Security? (Invited Paper)
Author :
Adaikkalavan, Raman ; Chakravarthy, Sharma
Author_Institution :
Dept. of Comput. Sci. & Eng., Texas Univ., Arlington, TX
Abstract :
Role-based access control, where object accesses are controlled by roles (or job functions) is a more feasible alternative to traditional access control mechanisms. Constraints play a critical role in realizing and providing finegrained RBAC in diverse domains such as P2P and grid computing. In this paper, we have shown how events and authorization rules are used to provide fine-grained RBAC. First, simple events are identified for the RBAC domain. Second, various event operators for modeling constraints such as precedence, non-occurrence, dependency and their combinations are introduced. Third, how event-based RBAC policies are specified using both simple and complex events are discussed. Finally, how the proposed fine-grained RBAC policies can be exploited for P2P resource management is discussed
Keywords :
authorisation; peer-to-peer computing; resource allocation; P2P resource management; authorization rules; constraint modeling; event; event-based RBAC policies; fine-grained RBAC; object accesses; role-based access control; role-based security; Access control; Authorization; Computer science; Costs; Grid computing; History; Laboratories; Resource management; Security; Time factors;
Conference_Titel :
Database and Expert Systems Applications, 2006. DEXA '06. 17th International Workshop on
Conference_Location :
Krakow
Print_ISBN :
0-7695-2641-1
DOI :
10.1109/DEXA.2006.68
