An Analysis of Access Control Models

An Analysis of Access Control Models

Access control in real systems is implemented using one or more abstractions based on the access control matrix (ACM). The most common abstractions are access control lists (ACLs) and capabilities. In this paper, we consider an extended Harrison-Ruzzo-Ullman (HRU) model to make some formal observati...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Saunders, Gregory, Hitchens, Michael, Varadharajan, Vijay
Format: Buchkapitel
Sprache:eng
Schlagworte:
Access Control
Access Control Model
Applied sciences
Capability System
Computer science
control theory
systems
Computer systems and distributed systems. User interface
Exact sciences and technology
Software
Subject Identity
Type System
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Access control in real systems is implemented using one or more abstractions based on the access control matrix (ACM). The most common abstractions are access control lists (ACLs) and capabilities. In this paper, we consider an extended Harrison-Ruzzo-Ullman (HRU) model to make some formal observations about capability systems versus access control list based systems. This analysis makes the characteristics of these types of access control mechanisms more explicit and is intended to provide a better understanding of their use. A combined model providing the flexibility of capabilities with the simplicity of the ACL and its relation to other models proposed earlier (e.g. [10,6]) are discussed.
ISSN:0302-9743
1611-3349
DOI:10.1007/3-540-48970-3_23