An Extended RBAC Model for Uniform Implementation of Role Hierarchy and Constraint

Role based access control (RBAC) has been widely adopted as a policy neutral access control model by many IT corporations. RBAC96, which is the most famous family of RBAC models, provides a common frame reference for related research and development. Many properties proposed in the family, e.g. limi...

Full description

Saved in:
Bibliographic Details
Main Authors: Yi Ren, Zhiting Xiao, Sipei Guo
Format: Conference Proceeding
Language:English
Subjects:
Access control
Authorization
Organizations
Permission
Radiation detectors
RBAC
security
Strontium
Switches
Online Access:Request full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:Role based access control (RBAC) has been widely adopted as a policy neutral access control model by many IT corporations. RBAC96, which is the most famous family of RBAC models, provides a common frame reference for related research and development. Many properties proposed in the family, e.g. limited inheritance, mutually exclusive roles, cardinality, and interaction, have been separately discussed in the previous work. In this paper, an extended RBAC model implementing those properties is proposed to provide an approach for implementing RBAC3. The extended RBAC model is based on deputy mechanism and is called deputy-based access control (DBAC). Since the private role hierarchy and constraint can be uniformly handled in DBAC, a flexible and powerful access control system can be implemented.
DOI:10.1109/ISECS.2008.163