Three Level Access Control Model Based on Role, Department and Task

Author

Xu Heng ; Zhao Song-zheng ; Zhang Xiao-di ; Gao Na

Author_Institution

Manage. Sch., Northwestern Polytech. Univ., Xian

fYear

2008

fDate

12-14 Oct. 2008

Firstpage

1

Lastpage

4

Abstract

A three-level access control model based on role, department and task is proposed in this paper. Task is one of the basic concepts in project management research area and department is one of the basic concepts in organizational structure theory. After introducing the concepts of task and department, this model regards them as independent authorization factor with role of the traditional RBAC96. This model could effectively reduce the amount of roles that should be assigned to the users of same position with different business scope and the other users of same business scope with different position. The practice has shown that this model could simplify the authorization management and improve the flexibility of access control.

Keywords

authorisation; organisational aspects; project management; business scope; department concept; independent authorization factor; organizational structure theory; project management; role concept; task concept; three-level access control model; Access control; Authorization; Computer network management; Control systems; Electric breakdown; Environmental management; Information resources; Information security; Project management; Space technology;

fLanguage

English

Publisher

ieee

Conference_Titel

Wireless Communications, Networking and Mobile Computing, 2008. WiCOM '08. 4th International Conference on

Conference_Location

Dalian

Print_ISBN

978-1-4244-2107-7

Electronic_ISBN

978-1-4244-2108-4

Type

conf

DOI

10.1109/WiCom.2008.2923

Filename

4681112