• DocumentCode
    2274697
  • Title

    Rule-based RBAC with negative authorization

  • Author

    Al-Kahtani, Mohammad A. ; Sandhu, Ravi

  • fYear
    2004
  • fDate
    6-10 Dec. 2004
  • Firstpage
    405
  • Lastpage
    415
  • Abstract
    RBAC has proven to be a flexible and useful access control model in practice. Rule-Based RBAC family of models was developed based on RBAC to overcome some of its limitations. One particular model of this family, which we call RB-RBAC-ve, introduces the concept of negative authorization to the RBAC arena. This paper provides a more detailed analysis of RB-RBAC-ve. The analysis includes user authorization, conflict among rules, conflict resolution polices, the impact of negative authorization on role hierarchies and enforcement architecture.
  • Keywords
    authorisation; enforcement architecture; negative authorization; role hierarchies; role-based access control; rule-based RBAC; Access control; Authorization; Automation; Business; Companies; Computer errors; Computer security; Costs; Permission; Web and internet services;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Computer Security Applications Conference, 2004. 20th Annual
  • ISSN
    1063-9527
  • Print_ISBN
    0-7695-2252-1
  • Type

    conf

  • DOI
    10.1109/CSAC.2004.32
  • Filename
    1377248
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2274697