DocumentCode :
3115207
Title :
A formal model for hierarchical policy contexts
Author :
Belokosztolszki, András ; Moody, Ken ; Eyers, David M.
Author_Institution :
Cambridge Univ., UK
fYear :
2004
fDate :
7-9 June 2004
Firstpage :
127
Lastpage :
136
Abstract :
Role-based access control (RBAC) models specify a policy interface for security administration, but do not provide guidelines for how large organisations should manage their roles. Parameterised RBAC systems are even more expressive; however, this adds to the risk of dangerous mistakes during policy specification. In this paper we define a formal model for hierarchical policy contexts: an RBAC meta-policy approach for subdividing the administration of large-scale security environments and for enforcing information flow restrictions over policies.
Keywords :
authorisation; computer network management; distributed object management; formal specification; RBAC models; RBAC systems; formal model; hierarchical policy contexts; information flow restrictions; large-scale security environments; metapolicy approach; policy interface; policy specification; role-based access control; security administration; Access control; Computer interfaces; Computer security; Conferences; Context modeling; Guidelines; Information security; Laboratories;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Policies for Distributed Systems and Networks, 2004. POLICY 2004. Proceedings. Fifth IEEE International Workshop on
Print_ISBN :
0-7695-2141-X
Type :
conf
DOI :
10.1109/POLICY.2004.1309159
Filename :
1309159
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=3115207
بازگشت