A generalized temporal role-based access control model

IEEE Transactions on Knowledge and Data Engineering

Volumn 17, Issue 1, 2005, Pages 4-23

  Joshi, James B D ^a   Bertino, Elisa ^b   Latif, Usman ^c   Ghafoor, Arif ^c  

^a UNIVERSITY OF PITTSBURGH   (United States)

^b Purdue University   (United States)

^c PURDUE UNIVERSITY   (United States)

Author keywords

Access control; Role hierarchy; Role based; Separation of duty; Temporal constraints

Indexed keywords

ACCESS CONTROL; ROLE HIERARCHY; ROLE-BASED; SEPARATION OF DUTY; TEMPORAL CONSTRAINTS;

ALGORITHMS; CONSTRAINT THEORY; ELECTRONIC COMMUNITIES; KNOWLEDGE ENGINEERING; SEMANTICS; SOCIETIES AND INSTITUTIONS;

SECURITY OF DATA;

EID: 17444406680     PISSN: 10414347     EISSN: None     Source Type: Journal    
DOI: 10.1109/TKDE.2005.1     Document Type: Article

References (18)

1. G. Ahn and R. Sandhu, "Role-Based Authorization Constraints Specification," ACM Trans. Information and System Security, vol. 3, no. 4, Nov. 2000.
2. J.F. Allen, "Maintaining Knowledge about Temporal Intervals," Comm. ACM, vol. 26, no. 11, pp. 832-843, Nov. 1983.
3. V. Atluri and A. Gal, "An Authorization Model for Temporal and Derived Data: Securing Information Portals," ACM Trans. Information and System Security, vol. 5, no. 1, pp. 62-94, Feb. 2002.
4. J. Bacon, K. Moody, and W. Yao, "A Model of OASIS Role-Based Access Control and Its Support for Active Security," ACM Trans. Information and System Security, vol. 5, no. 4, Nov. 2002.
5. E. Bertino, C. Bettini, E. Ferrari, and P. Samarati, "An Access Control Model Supporting Periodicity Constraints and Temporal Reasoning," ACM Trans. Database Systems, vol. 23, no. 3, pp. 231-285, Sept. 1998.
6. E. Bertino, E. Ferrari, and V. Atluri, "The Specification and Enforcement of Authorization Constraints in Workflow Management Systems," ACM Trans. Information and System Security, vol. 2, no. 1, pp. 65-104, Feb. 1999.
7. E. Bertino, P.A. Bonatti, and E. Ferrari, "TRBAC: A Temporal Role-Based Access Control Model," ACM Trans. Information and System Security, vol. 4, no. 3, pp. 191-233, Aug. 2001.
8. D. Ferrariolo, J.F. Barkley, and D.R. Kuhn, A Role-Based Access" Control Model and Reference Implementation within a Corporate Intranet," ACM Trans. Information and System Security, vol. 2, no. 1, pp. 34-64, 1999.
9. D.F. Ferraiolo, R. Sandhu, S. Gavrila, D.R. Kuhn, and R. Chandramouli, "Proposed NIST Standard for Role-Based Access Control," ACM Trans. Information and System Security, vol. 4, no. 3, pp. 224-274, Aug. 2001.
10. J.B.D. Joshi, "A Generalized Temporal Role Based Access Control Model for Developing Secure Systems," PhD thesis, CERIAS TR 2003-23, Purdue Univ., 2003.
11. D.R. Kuhn, "Mutual Exclusion of Roles as a Means of Implementing Separation of Duties in a Role-Based Access Control System," ACM Trans. Information and System Security, vol. 2, no. 2, pp. 177-228, 1999.
12. M. Niezette and J. Stevenne, "An Efficient Symbolic Representation of Periodic Time," Proc. First Int'l Conf. Information and Knowledge Management, 1992.
13. M. Nyanchama and S. Osborn, "The Role Graph Model and Conflict of Interest," ACM Trans. Information and System Security, vol. 2, no. 1, pp. 3-33, 1999.
14. S.L. Osborn, R. Sandhu, and Q. Munawer, "Configuring Role-Based Access Control to Enforce Mandatory and Discretionary Access Control Policies," ACM Trans. Information and System Security, vol. 3, no. 2, Feb. 2000.
15. R. Sandhu, "Separation of Duties in Computerized Information Systems," Database Security IV: Status and Prospects, pp. 179-189, North Holland, 1991.
16. R. Sandhu, E. Coyne, H. Feinstem, and C. Youman, "Role-Based Access Control Models," Computer, vol. 29, no. 2, Feb. 1996.
17. R. Sandhu, "Role Activation Hierarchies," Proc. Second ACM Workshop Role-Based Access Control, 1998.
18. R. Simon and M.E. Zurko, "Separation of Duty in Role-Based Environments," Proc. 10th IEEE Computer Security Foundations Workshop, June 1997.