Active authorization rules for enforcing role-based access control and its extensions

Proceedings - International Workshop on Biomedical Data Engineering, BMDE2005

Volumn 2005, Issue , 2005, Pages

  Adaikkalavan, Raman ^a   Chakravarthy, Sharma ^a  

^a The University of Texas at Arlington   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

DEPENDENCY CONSTRAINTS; EVENT-CONDITION-ACTION (ECA); FLEXIBLE MECHANISM; ROLE-BASED ACCESS CONTROL (RBAC);

COMPUTER SCIENCE; CONDITION MONITORING; SPECIFICATIONS; STANDARDS;

ACCESS CONTROL;

EID: 33947279986     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/ICDE.2005.179     Document Type: Conference Paper

References (32)

1. R. Adaikkalavan and S. Chakravarthy. SnoopIB: Interval-Based Event Specification and Detection for Active Databases. In Proc. of ADBIS. LNCS 2798, Sept. 2003.
2. M. A. Al-Kahtani and R. Sandhu. A Model for Attribute-Based User-Role Assignment. In Proc. of ACSAC, 2002.
3. M. A. Al-Kahtani and R. Sandhu. Induced Role Hierarchies with Attribute-Based RBAC. In Proc. of SACMAT, 2003.
4. J. Bacon, M. Lloyd, and K. Moody. Translating Role-Based Access Control Policy Within Context. In Proc. of POLICY, 2001.
5. J. Bacon, K. Moody, and W. Yao. A Model of OASIS Role-Based Access Control and its Support for Active Security. TISSEC, 5(4), 2002.
6. E. Bertino, P. A. Bonatti, and E. Ferrari. TRBAC: A Temporal Role-Based Access Control Model. ACM TISSEC, 4(3):191-233, 2001.
7. E. Bertino, B. Catania, E. Ferrari, and P. Perlasca. A System to Specify and Manage Multipolicy Access Control Models. In Proc. of POLICY, 2002.
8. R. Bhatti. X-GTRBAC: An XML-based Policy Specification Framework and Architecture for Enterprise-Wide Access Control. Master's thesis, Dept. of Electrical and Computer Science, Purdue University, 2003.
9. R. Bhatti et al. X-GTRBAC Admin: A Decentralized Administration Model for Enterprise Wide Access Control. Technical Report 2004-04, CERIAS, Purdue University, 2004.
10. A. P. Buchmann et al. Rules in an Open System: The REACH Rule System, pages 111-126. Springer, 1993.
11. S. Chakravarthy et al. Composite Events for Active Databases: Semantics, Contexts, and Detection. In Proc. of VLDB, pages 606-617, 1994.
12. S. Chakravarthy et al. Design of Sentinel: An Object-Oriented DBMS with Event-Based Rules. Information and Software Technology, 36(9):559-568, 1994.
13. T. M. Chalfant. Role Based Access Control and Secure Shell - A Closer Look At Two Solaris™ Operating Environment Security Features, July 2003.
14. R. Chandramouli and R. S. Sandhu. Role-Based Access Control Features in Commercial Database Management Systems. In Proc. of NISSC, 1998.
15. R. Dasari. Events And Rules For JAVA: Design And Implemenation Of A Seamless Approach. Master's thesis, CIS Department, The University of Florida, Gainesville, 1999.
16. U. Dayal, A. Buchmann, and S. Chakravarthy. The HiPAC Project. Morgan Kaufman Publishers Inc., 1996.
17. D. F. Ferraiolo, J. F. Barkley, and D. R. Kuhn. A Role Based Access Control Model and Reference Implementation within a Corporate Intranet. TISSEC, 1(2), 1999.
18. D. F. Ferraiolo, J. A. Cugini, and D. R. Kuhn. Role-Based Access Control: Features and Motivations. In Proc. of Computer Security Applications Conference, 1995.
19. Q. He. Privacy Enforcement with an Extended Role-Based Access Control Model. Technical Report TR-2003-09, Department of Computer Science, NCSU, 2003.
20. J. Hoagland. Adage, 1999.
21. InterNational Committee for Information Technology Standards. RBAC Standard, ANSI INCITS 359-2004, 2004.
22. J. B. D. Joshi et al. Generalized Temporal Role-Based Access Control Model - Specification and Modeling. Technical Report 2001-47, CERIAS, Purdue University, 2001.
23. J. B. D. Joshi et al. Dependencies and Separation of Duty Constraints in GTRBAC. In Proc. of SACMAT, 2003.
24. M. Koch, L. V. Mancini, and F. Parisi-Presicce. On the specification and evolution of access control policies. In Proc. of SACMAT, 2001.
25. M. J. Moyer and M. Ahamad. Generalized Role-Based Access Control. In Proc. of ICDCS, 2001.
26. National Institute of Standards and Technology (NIST). The Economic Impact of Role-Based Access Control, 2002.
27. G. Neumann and M. Strembeck. An Approach to Engineer and Enforce Context Constraints in an RBAC Environment. In Proc. of SACMAT, 2003.
28. R. Ramakrishnan and J. Gehrke. Database Management Systems (3rd ed.). McGraw-Hill, 2003.
29. R. S. Sandhu, E. Coyne, H. Feinstein, and C. Youman. Role-Based Access Control Models. IEEE Computer, 29(2):38-47, 1996.
30. R. T. Simon and M. E. Zurko. Separation of Duty in Role-Based Environments. In Proc. of IEEE CSF Workshop, 1997.
31. M. Strembeck. Conflict Checking of Separation of Duty Constraints in RBAC - Implementation Experiences. In Proc. of the Conference on Software Engineering, 2004.
32. W. Yao, K. Moody, and J. Bacon. A Model of OASIS Role-Based Access Control and its Support for Active Security. In Proc. of SACMAT, 2001.