Title :
A Task-Role Based Access Control Model with Multi-Constraints
Author :
Yao, Lin ; Kong, Xiangwei ; Xu, Zichuan
Author_Institution :
Sch. of Electron. & Inf. Dept., Dalian Univ. Of Technol., Dalian
Abstract :
Although RBAC models have received broad support as a generalized approach to access control, the administration of roles in large organizations can become quite cumbersome. In this paper, we develop a new paradigm for access control and authorization management, called task-role based access control (TRBAC) with multi-constraint. The basic idea of this model different from traditional RBAC is that roles and permissions are not connected directly but are put together by tasks. It is a dynamic authorization model with fine-grained partition on users, roles, tasks and sessions. The unit of task becomes the permission granularity. It is more convenient for enterprise privilege management such as distributed application, C/S access control and workflow management. It can reduce the administrator´s burden and avoid some potential safety hazards because of adopted dynamic authorization.
Keywords :
authorisation; business data processing; authorization management; enterprise privilege management; fine-grained partition; multi constraint; permission granularity; task-role based access control model; Access control; Authorization; Companies; Computer networks; Hazards; Information management; Information security; Permission; Power system modeling; Power system security; access control; multi-constraints; tak-role;
Conference_Titel :
Networked Computing and Advanced Information Management, 2008. NCM '08. Fourth International Conference on
Conference_Location :
Gyeongju
Print_ISBN :
978-0-7695-3322-3
DOI :
10.1109/NCM.2008.75
