Trust-based user-role assignment in Role-Based Access Control

2007 IEEE/ACS International Conference on Computer Systems and Applications, AICCSA 2007

Volumn , Issue , 2007, Pages 807-814

  Takabi, Hassan ^a   Amini, Morteza ^a   Jalili, Asool ^a  

^a SHARIF UNIVERSITY OF TECHNOLOGY   (Iran)

Author keywords

[No Author keywords available]

Indexed keywords

COST BENEFIT ANALYSIS; FUZZY SETS; INSURANCE; MATHEMATICAL MODELS; SOCIETIES AND INSTITUTIONS; USER INTERFACES;

BANKS; ONLINE SERVICES; USER-ROLE ASSIGNMENT;

ACCESS CONTROL;

EID: 36249018901     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/AICCSA.2007.370725     Document Type: Conference Paper

References (19)

1. Kandel, "Fuzzy Statistics and Policy Analysis", Fuzzy Sets: Theory and Applications to Policy Analysis and Information Systems, ed. By P. Wang and S. Chang, Plenum Press, New York, 1980.
2. "American National Standard for Information Technology- Role Based Access Control", American National Standard Institute, Inc., ANSI INCITS 359-2004, 2004.
3. R. Alo, A. Berrached, A. De Korvin, and M. Beheshti, "Using Fuzzy Relation Equations for Adaptive Access Control in Distributed Systems," In proceedings of The International Conference In Advances In Infrastructure For e-Business And Education On The Internet, L'Aquila, Rome, Italy, 2000.
4. A. Berrached, M. Beheshti, A. De Korvin, and R. Alo, "An Access Control Model Based On Fuzzy Set Theory," In proceedings of The 8th International Conference IPMU Information Processing and Management Of Uncertainty In Knowledge Based Systems, Madrid, Spain, 2000.
5. A. Berrached, M. Beheshti, A. De Korvin, and R. Alo, "Applying Fuzzy Relation Equations to Threat Analysis," In proceedings of The 35th Annual Hawaii International Conference on System Sciences, 2002.
6. A. Berrached and A. De Korvin, "Reinforcing Access Control Using Fuzzy Relation Equations," In proceedings of The 2006 International Conference on Security and Management, 2006.
7. H. Hosmer, "Security is fuzzy!: applying the fuzzy logic paradigm to the multipolicy paradigm," In proceedings of The New Security Paradigms Workshop, 1993.
8. H. Hosmer, "Using Fuzzy Logic to Represent Security Policies in the Multipolicy Paradigm," In proceedings of ACM Special Interest Group on Security, Audit, and Control (SIGSAC) Review, 1992.
9. S. Ovchinnikov, "Fuzzy Sets and Secure Computer Systems," In proceedings of Th New Security Paradigms Workshop, Little Compton, Rhode Island, United States, 1994.
10. S. Ovchinnikov, "Modeling security systems in a fuzzy environment," In proceedings of The IPMU Information Processing and Management Of Uncertainty In Knowledge Based Systems, Granada, Spain, 1996.
11. R. Sandhu, E. Coyne, H. Feinstein, and C. Youman, "Role Based Access Control Models," IEEE Computer, vol. 29, pp. 38-47, 1996.
12. D. F. Ferraiolo, R. Sandhu, S. Gavrila, D. R. Kuhn, and R. Chandramouli, "Proposed NIST Standard for role based access control," In proceedings of ACM Transactions on Information and system securiy, 2001.
13. E. Bertino, P. A. Bonatti, and E. Ferrari, "TRBAC: A Temporal Role-based Access Control Model," In proceedings of ACM Transactions on Information and System Security, 2001.
14. M. J. Moyer and M. Ahamad, "Generalized RoleBased Access Control," In proceedings of The 21st International Conference on Distributed Computing Systems, Mesa, USA, 2001.
15. T. Mossakowski, M. Drouineaud, and K. Sohr, "A Temporal-Logic Extension of Role-Based Access Control covering dynamic separation of duties," In proceedings of The 10th International Symposium on Temporal Representation and Reasoning and Fourth International Conference on Temporal Logic, 2003.
16. M. A. Al-Kahtani and R. Sandhu, "Rule-Based RBAC with Negative Authorization," In proceedings of The 20th Annual Computer Security Applications Conference (ACSAC 04) 2004.
17. J. B. D. Joshi, E. Bertino, U. Latif, and A. Ghafoor, "A Generalized Temporal Role-Based Access Control Model," In proceedings of IEEE Transactions on Knowledge and Data Engineering, 2005.
18. A. Kern, A.Schaad, and J. Moffett, "An Administration Concept for the Enterprise Role Based Access Control Model," In proceedings of 8th ACM SYMPOSIUM ON ACCESS CONTROL MODELS AND TECHNOLOGIES (SACMAT'03), Como, Italy, 2003.
19. E. J. Chang, F. K. Hussain, and T. S. Dillon, "Fuzzy Nature of Trust and Dynamic Trust Modelling in Service Oriented Environments," In proceedings of The 2005 workshop on Secure web services, 2005.