Title :
Minimum user requirement in Role Based Access Control with Separation of Duty constraints
Author :
Roy, Anirban ; Sural, Shamik ; Majumdar, A.K.
Author_Institution :
Sch. of Inf. Technol., Indian Inst. of Technol., Kharagpur, Kharagpur, India
Abstract :
Constraints, specifically Separation of Duty (SoD) constraints, constitute an essential component for specifying Role Based Access Control (RBAC) policies. While it has been shown earlier that SoD constraints can be effectively represented using a set of t - t Statically Mutually Exclusive Roles (SMER) constraints, this paper presents a method for finding minimum number of users under multiple SMER constraints. We show that one way of solving the problem is to evaluate chromatic numbers for a set of graphs. However, since exhaustive search is computationally quite expensive, we present a genetic algorithm formulation of the problem. Each chromosome is a string of positive integers within a certain range and its length equals the number of t-t SMER constraints in the system. We report our results for different values of the number of roles and the number of constraints and also for different values of t.
Keywords :
authorisation; genetic algorithms; graph theory; RBAC; SMER; SoD; Statically Mutually Exclusive Roles; chromatic numbers; duty constraints separation; genetic algorithm; graph set; minimum user requirement; role based access control; separation of duty; Access control; Biological cells; Color; Computational modeling; Genetic algorithms; Intelligent systems; Permission; Chromatic number; Genetic algorithm; Role Based Access Control (RBAC); Separation of Duty (SoD); Statically Mutually Exclusive Roles (SMER) constraint;
Conference_Titel :
Intelligent Systems Design and Applications (ISDA), 2012 12th International Conference on
Conference_Location :
Kochi
Print_ISBN :
978-1-4673-5117-1
DOI :
10.1109/ISDA.2012.6416569
