A classifier-based approach to user-role assignment for web applications

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 3178, Issue , 2004, Pages 163-171

  Sheng, Li ^a   Osborn, Sylvia L ^a  

^a UNIVERSITY OF WESTERN ONTARIO   (Canada)

Author keywords

[No Author keywords available]

Indexed keywords

INFORMATION MANAGEMENT;

GRAPH MODEL; ON-LINE APPLICATIONS; ROLE-BASED ACCESS CONTROL; SECURITY DESIGN; USER GROUPS; USER ROLES; WEB APPLICATION;

ACCESS CONTROL;

EID: 35048898878     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/978-3-540-30073-1_12     Document Type: Article

References (14)

1. [AKS02] M.A. Al-Kahtani and R. Sandhu. A model for attribute-based user-role assignment. In ACSAC 2002, 2002.
2. [AKS03] M.A. Al-Kahtani and R. Sandhu. Induced role hierarchies with attribute-based rbac. In Proceedings ACM SACMAT, 2003.
3. +01] D.F. Ferraiolo, R. Sandhu, S. Gavrila, D.R. Kuhn, and R. Chandramouli. Proposed NIST standard for role-based access control. ACM TISSEC, 4(3):224-275, 2001.
4. [HMM00] A Herzberg, Y. Mass, and J. Mihaeli. Access control meets public key infrastructure, or: Assigning roles to strangers. In IEEE Symposium on Security and Privacy, May 2000.
5. [IO03] Cecilia M. Ionita and Sylvia L. Osborn. Privilege administration for the role graph model. In Research Directions in Data and Applications Security, Proc. IFIP WG11.3 Working Conference on Database Security, pages 15-25. Kluwer Academic Publishers, 2003.
6. [Mit97] T. Mitchell. Machine Learning. McGraw-Hill, 1997.
7. [NO94] M. Nyanchama and S. L. Osborn. Access rights administration in role-based security systems. In J. Biskup, M. Morgenstern, and C. E. Landwehr, editors, Database Security, VIII, Status and Prospects WG11.3 Working Conference on Database Security, pages 37-56. North-Holland, 1994.
8. [NO99] M. Nyanchama and S. L. Osborn. The role graph model and conflict of interest. ACM TISSEC, 2(1):3-33, 1999.
9. [OG00] S. Osborn and Y. Guo. Modeling users in role-based access control. In Fifth ACM Workshop on Role-Based Access Control, pages 31-38, Berlin, Germany, July 2000.
10. [OHL03] Sylvia L. Osborn, Yan Han, and Jun Liu. A methodology for managing roles in legacy systems. In Proc. 8th ACM SACMAT, pages 33-40, 2003.
11. [OS02] Sejong Oh and Ravi Sandhu. A model of role administration using organization structure. In Proc. 7th ACM SACMAT, pages 155-162, 2002.
12. [SCFY96] R. Sandhu, E.J. Coyne, H.L. Feinstein, and C.E. Youman. Role-based access control models. IEEE Computer, 29:38-47, Feb. 1996.
13. [WO03] He Wang and Sylvia Osborn. An administrative model for role graphs. In Proc. IFIP WG11.3 Working Conference on Database Security, Estes Park, Colorado, 2003.
14. [ZBM01] Y. Zhong, B. Bhargava, and M. Mahoui. Trustworthiness based authorization on WWW. In IEEE workshop on Security in Distributed Data Warehousing, 2001.