Safety and Availability Checking for User Authorization Queries in RBAC

Safety and Availability Checking for User Authorization Queries in RBAC

This paper introduces the notion of safety and availability checking for user authorization query processing, and develop a recursive algorithm use the ideas from backtracking-based search techniques to search for the optimal solution. For the availability checking, we introduce the notion of max ac...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:International journal of computational intelligence systems 2012-09, Vol.5 (5), p.860-867
Hauptverfasser: Lu, Jian-feng, Han, Jian-min, Chen, Wei, Hu, Jin-Wei
Format: Artikel
Sprache:eng
Schlagworte:
authorization
availability
Research Article
safety
separation-of-duty
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:This paper introduces the notion of safety and availability checking for user authorization query processing, and develop a recursive algorithm use the ideas from backtracking-based search techniques to search for the optimal solution. For the availability checking, we introduce the notion of max activatable set (MAS), and show formally how MAS can be determined in a hybrid role hierarchy. For the safety checking, we give a formal definition of dynamic separation-of-duty (DSoD) policies, and show how to reduce the safety checking for DSoD to a SAT instance.
ISSN:1875-6891
1875-6883
1875-6883
DOI:10.1080/18756891.2012.733216