Role hierarchies and constraints for lattice-based access controls

View Related Documents

Book Chapter
Role-Based Access Control
Sylvia Osborn
Data-Centric Systems and Applications, 2007, Security, Privacy, and Trust in Modern Data Management, Part II, Pages 55-70
- Download PDF (211.0 KB)
Book Chapter
Access control: The neglected frontier
Invited paper
Ravi Sandhu
Lecture Notes in Computer Science, 1996, Volume 1172, Information Security and Privacy, Pages 219-227
- Download PDF (676.0 KB)
Book Chapter
Resolving Information Flow Conflicts in RBAC Systems
Noa Tuval and Ehud Gudes
Lecture Notes in Computer Science, 2006, Volume 4127, Data and Applications Security XX, Pages 148-162
- Download PDF (456.8 KB)
Book Chapter
Role-Based Access Control
2006, Access Control Systems, Pages 190-251
- Download PDF (2.9 MB)
Book Chapter
Role-based Administration of User-role Assignment and Its Oracle Implementation
Lilong Han, Qingtan Liu and Zongkai Yang
IFIP Advances in Information and Communication Technology, 2007, Volume 252, Integration and Innovation Orient to E-Society Volume 2, Pages 437-444
- Download PDF (584.2 KB)
Book Chapter
A Methodology for Bridging between RBAC and an Arbitrary Application Program
Candy Wai-Yue Shum, Sylvia L. Osborn and He Wang
Lecture Notes in Computer Science, 2008, Volume 5159, Secure Data Management, Pages 199-208
- Download PDF (313.3 KB)
Book Chapter
Discretionary and Mandatory Controls for Role-Based Administration
Jason Crampton
Lecture Notes in Computer Science, 2006, Volume 4127, Data and Applications Security XX, Pages 194-208
- Download PDF (485.8 KB)
Book Chapter
Modeling and Inferring on Role-Based Access Control Policies Using Data Dependencies
Romuald Thion and Stéphane Coulondre
Lecture Notes in Computer Science, 2006, Volume 4080, Database and Expert Systems Applications, Pages 914-923
- Download PDF (360.4 KB)
Book Chapter
A Compositional Multiple Policies Operating System Security Model
Lei Xia, Wei Huang and Hao Huang
Lecture Notes in Computer Science, 2007, Volume 4867, Information Security Applications, Pages 291-302
- Download PDF (244.4 KB)
Journal Article
Role-Based Access Controls: Status, Dissemination, and Prospects for Generic Security Mechanisms
Wolfgang Essmayr, Stefan Probst and Edgar Weippl
Electronic Commerce Research, 2004, Volume 4, Numbers 1-2, Pages 127-156
- Download PDF (5.4 KB)

Abstract

Role-based access control (RBAC) is a promising alternative to traditional discretionary and mandatory access controls. In RBAC permissions are associated with roles, and users are made members of appropriate roles thereby acquiring the roles' permissions. In this paper we formally show that lattice-based mandatory access controls can be enforced by appropriate configuration of RBAC components. Our constructions demonstrate that role hierarchies and constraints are required to effectively achieve this result. We show that variations of the lattice-based *-property, such as write-up (liberal *-property) and no-write-up (strict *-property), can be easily accommodated in RBAC. Our results attest to the flexibility of RBAC and its ability to accommodate different policies by suitable configuration of role hierarchies and constraints.

This research is partly supported by contract 50-DKNB-5-00188 from the National Institute of Standards and Technology at SETA Corporation, and grant CCR-9503560 from the National Science Foundation at George Mason University.

Fulltext Preview

Image of the first page of the fulltext document

Frequently asked questions General info on journals and books Send us your feedback Impressum Contact us

SpringerLink

Role hierarchies and constraints for lattice-based access controls

View Related Documents

Abstract

Fulltext Preview