Title :
An extended RBAC model based on granular logic
Author :
Jian-min, Han ; Xi-yu, Li ; Hui-qun, Yu ; Jun, Tong
Author_Institution :
Math, Phys. & Inf. Eng. Coll., Zhejiang Normal Univ., Jinhua
Abstract :
RBAC (role-based access control) has been widely investigated and adopted for its simplicity and effectiveness. However, there still exist some defects in it, including: (1) traditional RBAC does not consider time and context factors. (2) traditional RBAC only defines a simple logical relationship among roles and permissions, which makes it incompetent to solve authorization problem for large-scale dynamic systems. To remedy these defects, the paper introduces granular computing to RBAC and proposes G-RBAC model. G-RBAC granulates permissions and roles, and introduces time and context factors to them. The paper also defines elementspsila logical relationship in G-RBAC based on granular logic and realizes authorization decision-making by granular logic reasoning. The application examples show that G-RBAC can enhance flexibility of authorization, and realize fine grained access control effectively for large scale enterprise information system.
Keywords :
authorisation; business data processing; formal logic; inference mechanisms; information systems; G-RBAC model; authorization; decision-making; extended RBAC model; grained access control; granular computing; granular logic reasoning; large scale enterprise information system; role-based access control; Access control; Authorization; Decision making; Educational institutions; Information systems; Large-scale systems; Logic; Permission; Physics; Time factors;
Conference_Titel :
Granular Computing, 2008. GrC 2008. IEEE International Conference on
Conference_Location :
Hangzhou
Print_ISBN :
978-1-4244-2512-9
Electronic_ISBN :
978-1-4244-2513-6
DOI :
10.1109/GRC.2008.4664701
