Title :
An Access Rights Administration Model in Role-Based Security Systems
Author_Institution :
Nanjing Inst. of Technol., Nanjing, China
Abstract :
Access control is a difficult security problem for an information system. RBAC model is a well known and recognized as a good security model for it. Though RBAC is a good model, administration of RBAC including building and maintaining access control information remains a difficult problem in large companies. A hierarchy role tree (HRT)-based administration model of RBAC in an enterprise environment is proposed. This HRT-based administration method allows security administrators to manage access control by a tree structure called HRT which reflects their relationship within their organization. It helps to build a team collaboration in RBAC administration between administrator and subadministrators. Moreover, by the new model, system can express DSD by a tree-based data structure, and this will greatly reduce the system complex in running time.
Keywords :
authorisation; tree data structures; trees (mathematics); RBAC model; access control management; access rights administration model; enterprise environment; hierarchy role tree; information system; role-based security systems; security problem; team collaboration; tree-based data structure; Access control; Authorization; Buildings; Companies; Data security; Information security; Information systems; Permission; Tree data structures; Tree graphs;
Conference_Titel :
Information Engineering and Computer Science, 2009. ICIECS 2009. International Conference on
Conference_Location :
Wuhan
Print_ISBN :
978-1-4244-4994-1
DOI :
10.1109/ICIECS.2009.5363963
