• DocumentCode
    3115207
  • Title

    A formal model for hierarchical policy contexts

  • Author

    Belokosztolszki, András ; Moody, Ken ; Eyers, David M.

  • Author_Institution
    Cambridge Univ., UK
  • fYear
    2004
  • fDate
    7-9 June 2004
  • Firstpage
    127
  • Lastpage
    136
  • Abstract
    Role-based access control (RBAC) models specify a policy interface for security administration, but do not provide guidelines for how large organisations should manage their roles. Parameterised RBAC systems are even more expressive; however, this adds to the risk of dangerous mistakes during policy specification. In this paper we define a formal model for hierarchical policy contexts: an RBAC meta-policy approach for subdividing the administration of large-scale security environments and for enforcing information flow restrictions over policies.
  • Keywords
    authorisation; computer network management; distributed object management; formal specification; RBAC models; RBAC systems; formal model; hierarchical policy contexts; information flow restrictions; large-scale security environments; metapolicy approach; policy interface; policy specification; role-based access control; security administration; Access control; Computer interfaces; Computer security; Conferences; Context modeling; Guidelines; Information security; Laboratories;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Policies for Distributed Systems and Networks, 2004. POLICY 2004. Proceedings. Fifth IEEE International Workshop on
  • Print_ISBN
    0-7695-2141-X
  • Type

    conf

  • DOI
    10.1109/POLICY.2004.1309159
  • Filename
    1309159
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3115207