• DocumentCode
    3673676
  • Title

    Implementing and Managing Policy Rules in Attribute Based Access Control

  • Author

    Vincent Hu;David F. Ferraiolo;D. Richard Kuhn;Raghu N. Kacker;Yu Lei

  • Author_Institution
    Nat. Inst. of Stand. &
  • fYear
    2015
  • Firstpage
    518
  • Lastpage
    525
  • Abstract
    Attribute Based Access Control (ABAC) is a popularapproach to enterprise-wide access control that provides flexibility suitable for today´s dynamic distributed systems. ABAC controls access to objects by evaluating policy rules against the attributes of entities (subject and object),operations, and the environment relevant to a request, but great care must be taken in setting up and maintaining the access control rules that allow such flexible operations. This article summarizes important considerations in ABAC deployment first introduced in the Guide to Attribute Based Access Control [1].
  • Keywords
    "Access control","Organizations","Object recognition","Context","Standards","Employment"
  • Publisher
    ieee
  • Conference_Titel
    Information Reuse and Integration (IRI), 2015 IEEE International Conference on
  • Type

    conf

  • DOI
    10.1109/IRI.2015.98
  • Filename
    7301021
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3673676