X-GTRBAC admin: A decentralized administration model for enterprise-wide access control

ACM Transactions on Information and System Security

Volumn 8, Issue 4, 2005, Pages 388-423

  Bhatti, Rafae ^a   Shafiq, Basit ^a   Bertino, Elisa ^a   Ghafoor, Arif ^a   Joshi, James B D ^b  

^a PURDUE UNIVERSITY   (United States)

^b UNIVERSITY OF PITTSBURGH   (United States)

Author keywords

Policy administration; Role based access control; Secure interoperation; XML

Indexed keywords

POLICY ADMINISTRATION; REALISTIC ENTERPRISE ENVIRONMENT; ROLE-BASED ACCESS CONTROL; SECURE INTEROPERATION;

CONSTRAINT THEORY; IDENTIFICATION (CONTROL SYSTEMS); PROBLEM SOLVING; SECURITY OF DATA; XML;

TELECOMMUNICATION NETWORKS;

EID: 33745472982     PISSN: 10949224     EISSN: 10949224     Source Type: Journal    
DOI: 10.1145/1108906.1108909     Document Type: Conference Paper

References (17)

1. BACON, J., MOODY, K., AND YAO, W. 2002. A model of OASIS role-based access control and its support for active security. ACM Transactions on Information and System Security (TISSEC) 5, 4(Nov.).
2. BHATTI, R., JOSHI, J. B. D., BEHTINO, E., AND GHAFOOR, A. 2005. X-GTRBAC: An XML-based policy specification framework and architecture for enterprise-wide access control. ACM Transactions on Information and System Security (TISSEC), 8, 2 (May).
3. BONATTI, P. A., SAPINO, M. L., AND SUBRAHMANIAN, V. S. 1996. Merging heterogeneous security orderings. ESORICS. 183-197.
4. BONATTI, P. A., VIMERCATI, S., AND SAMARATI, P. 2002. An algebra for composing access control policies." ACM Transactions on Information and System Security, 5, 1 (Feb.). 1-35.
5. CRAMPTON, J. AND LOIZOU, G. 2002. Administrative scope and role hierarchy operations. In Proceedings of 7th ACM Symposium on Access Control Models and Technologies (June).
6. DAWSON, S., QIAN, S., AND SAMARATI, P. 2000. Providing security and interoperation of heterogeneous systems. Distributed and Parallel Databases, 8, 1, 119-145.
7. FERRAIOLO, D. F., SANDHU, R., GAVRILA, S., RICHARD KUHN, D., AND CHANDHAMOULI, R. 2001. Proposed NIST standard for role-based access control. ACM Transactions on Information and System Security (TISSEC), 4, 3 (Aug.).
8. GONG, L. AND QIAN, X. 1996. Computational issues in secure interoperation. IEEE Transaction on Software and Engineering, 22, 1 (Jan.).
9. JOSHI, J. B. D., BERTINO, E., LATIF, U., AND GHAFOOR, A. 2005. Generalized temporal role based access control model (GTRBAC)- Specification and modeling. IEEE Transaction on Knowledge and Data Engineering, 17, 1 (Jan.).
10. JOSHI, J. B. D., BERTINO, E., GHAFOOR, A. 2002. Temporal hierarchies and inheritance semantics for GTRBAC. In Proceedings of 7th ACM Symposium on Access Control Models and Technologies (June).
11. JOSHI, J. B. D., BHATTI, R., BERTINO, E., AND GHAFOOR, A. 2004. X-RBAC An access control language for multidomain environments. IEEE Internet Computing, 8, 6, 40-50 (Nov./Dec.).
12. OH, S. AND SANDHU, R. 2002. A model for role administration using organization structure. In Proceedings of the 7th ACM Symposium on Access Control Models and Technologies (June).
13. SANDHU, R., COYNE, E. J., FEINSTEIN, H. L., AND YEOMAN, C. E. 1996. Role based access control models. IEEE Computer 29, 2 (Feb.).
14. SANDHU, R. 1998. Role activation hierarchies. In Proceedings of the 3rd ACM Workshop on Role-Based Access Control (Oct.). 33-40.
15. SANDHU. R. AND MUNAWER, Q. 1999. The ARBAC99 model for administration of roles. In Proceedings of the 15th Annual Computer Security Applications Conference (Dec.).
16. SHAFIQ, B., JOSHI, J., BERTINO, E., AND GHAFOOR, A. 2005. Secure interoperation in a multidomain environment. Accepted for publication in IEEE Transaction on Knowledge and Data Engineering, 17, 11 (Nov.).
17. ZHANG, H. 2001. Improving constrained nonlinear search algorithms through constraint relaxation. Masters thesis, University of Illinois at Urbana Champaign, Urbana, IL.