Title :
Role-Based Access Control in Software Services: Theory vs. Practice
Author :
Martin Lason;Ondrej Jakl
Author_Institution :
Centre for Inf. Technol., VSB-Tech. Univ. of Ostrava, Ostrava, Czech Republic
Abstract :
This paper deals with the authorization management in software services. In particular, it presents the role-based access control (RBAC) approach and elaborates it in several directions to suit the needs of real services. As an example, a complex information system developed and deployed at VSB - Technical University of Ostrava is considered. Here, RBAC is made use of as a base model for administration of users´ privileges. We explore several approaches how to extend the base RBAC model and how to build it automatically. Those ideas are confronted with the reality encountered in the development of the university information system and experiences are discussed.
Keywords :
"Unified modeling language","Permission","Access control","Organizations","Buildings"
Conference_Titel :
Symbolic and Numeric Algorithms for Scientific Computing (SYNASC), 2010 12th International Symposium on
Print_ISBN :
978-1-4244-9816-1
DOI :
10.1109/SYNASC.2010.87
