Specification and classification of role-based authorization policies

Specification and classification of role-based authorization policies

Constraints are an important aspect of role-based access control (RBAC). Although the importance of constraints in RBAC has been recognized for a long time, they have not received much attention. In this paper we classify RBAC constraints into two major classes called prohibition constraints and obl...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
1. Verfasser: Ahn, G.-J.
Format: Tagungsbericht
Sprache:eng
Schlagworte:
Access control
Authorization
Collaborative work
Computer crime
Computer errors
Conferences
Costs
Formal languages
Permission
Specification languages
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Constraints are an important aspect of role-based access control (RBAC). Although the importance of constraints in RBAC has been recognized for a long time, they have not received much attention. In this paper we classify RBAC constraints into two major classes called prohibition constraints and obligation constraints. To specify these constraints, we utilize a formal language, named RCL2000. In this paper we show that prohibition, cardinality, and obligation constraints can be also represented in RCL2000.
ISSN:1080-1383
2375-5377
DOI:10.1109/ENABL.2003.1231408