Formal foundations for hybrid hierarchies in GTRBAC

ACM Transactions on Information and System Security

Volumn 10, Issue 4, 2008, Pages

  Joshi, James B D ^a   Bertino, Elisa ^b,c   Ghafoor, Arif ^b   Zhang, Yue ^a,d  

^a UNIVERSITY OF PITTSBURGH   (United States)

^b PURDUE UNIVERSITY   (United States)

^c Purdue University   (United States)

^d Learning Research and Development Ctr   (United States)

Author keywords

Derived relation; Role hierarchy

Indexed keywords

DERIVED RELATIONS; GTRBAC; HYBRID HIERARCHIES; ROLE HIERARCHY; UNIQUELY ACTIVABLE SET;

ACCESS CONTROL; GENERAL PURPOSE COMPUTERS; HYBRID COMPUTERS; SEMANTICS; USER INTERFACES;

HIERARCHICAL SYSTEMS;

EID: 39149138668     PISSN: 10949224     EISSN: 15577406     Source Type: Journal    
DOI: 10.1145/1284680.1284682     Document Type: Article

References (25)

1. BARKLEY, J., CINCOTTA, A., FERRAIOLO, D., GAVRILA, S., AND KUHN, D. R. 1997. Role based access control for the world wide web. In Proceedings of 20th National Information System Security Conference. NIST/NSA.
2. BERTINO, E. AND FERRARI, E. 1999. The specification and enforcement of authorization constraints in workflow management systems. ACM Transactions on Information and System, Security 2, 1 (Feb.), 65-104.
3. BERTINO, E., BONATTI, P. A., AND FERRARI, E. 2001. Trbac: A temporal role-based access control model. ACM Transactions on Information and System Security 4, 3 (Aug.), 191-233.
4. BISKUP, J., FLEGEL, U., AND KARABULUT, Y. 1998. Secure mediation: Requirements and design. In Proceedings of 12th Annual IFIP WG 11.3 Working Conference on Database Security. Chalkidiki, Greece.
5. CRAMPTON, J. AND LOIZOU, G. 2003. Administrative scope: A foundation for role-based administrative models. ACM Transactions on Information System Security 6, 2, 201-231.
6. FERRAIOLO, D. F., GILBERT, D. M., AND LYNCH, N. 1993. An examination of federal and commercial access control policy needs. In Proceedings of NISTNCSC National Computer Security Conference. Baltimore, MD.
7. GIURI, L. 1995. A new model for role-based access control. In Proceedings of 11th Annual Computer Security Application Conference. New Orleans, LA.
8. GIURI, L. 1996. Role-based access control: A natural approach. In RBAC '95: Proceedings of the first ACM Workshop on Role-based access control. ACM Press, New York. 13.
9. JAEGER, T. AND TIDSWELL, J. E. 2001. Practical safety in flexible access control models. ACM Transactions on Information and System Security 4, 2, 158-190.
10. JOSHI, J. B. D., AREF, W., GHAFOOR, A., AND SPAFFORD, E. H. 2001a. Security models for web-based applications. Communications of the ACM 44, 2 (Feb.), 38-72.
11. JOSHI, J. B. D., GHAFOOR, A., AREF, W., AND SPAFFORD, E. H. 2001b. Digital government security infrastructure design challenges. IEEE Computer 34, 2 (Feb.), 66-72.
12. JOSHI, J. B. D., BERTINO, E., AND GHAFOOR, A. 2002. Temporal hierarchies and inheritance semantics for gtrbac. In SACMAT '02: Proceedings of the seventh ACM symposium on Access control models and technologies. ACM Press, New York. 74-83.
13. JOSHI, J. B. D., BERTINO, E., LATIF, U., AND GHAFOOR, A. 2005a. Analysis of expressiveness and design issues for a temporal role based access control model. IEEE Transactions on Dependable and Secure Computing 2, 2, 157-175.
14. JOSHI, J. B. D., BERTINO, E., LATIF, U., AND GHAFOOR, A. 2005b. Generalized temporal role based access control model. IEEE Transactions on Knowledge and Data Engineering 17, 1 (Jan.), 4-23.
15. KOCH, M., MANCINI, L., AND PARISI-PRESICCE, F. 2002. A graph-based formalism for rbac. ACM Transactions on Information and System Security 5, 3, 332-365.
16. MOFFETT, J. D. 1998. Control principles and role hierarchies. In RBAC '98: Proceedings of the third ACM workshop on Role-based access control. ACM Press, New York. 63-69.
17. MOFFETT, J. D. AND LUPU, E. C. 1999. The uses of role hierarchies in access control. In RBAC '99: Proceedings of the fourth ACM workshop on Role-based access control. ACM Press, New York. 153-160.
18. NYANCHAMA, M. AND OSBORN, S. 1999. The role graph model and conflict of interest. ACM Transactions on Information and System Security 2, 1, 3-33.
19. NYANCHAMA, M. AND OSBORN, S. L. 1994. Access rights administration in role-based security systems. In Proceedings of the IFIP WG11.3 Working Conference on Database Security VII. North-Holland, Amsterdam. 37-56.
20. OSBORN, S., SANDHU, R., AND MUNAWER, Q. 2000. Configuring role-based access control to enforce mandatory and discretionary access control policies. ACM Transactions on Information and System Security 3, 2, 85-106.
21. PARK, J. S., SANDHU, R., AND AHN, G. J. 2001. Role-based access control on the web. ACM Transactions on Information and System Security 4, 1 (Feb.), 37-71.
22. SANDHU, R. 1996. Role hierarchies and constraints for lattice-based access controls. Computer Security - Esorics'96, LNCSN 1146, 65-79.
23. SANDHU, R. 1998. Role activation hierarchies. Proceedings of 2rd ACM Workshop on Role-based Access Control, 33-40.
24. SANDHU, R., COYNE, E. J., FEINSTEIN, H. L., AND YOUMAN, C. E. 1996. Role-based access control models. IEEE Computer 29, 2, 38-47.
25. SANDHU, R., BHAMIDIPANI, V., AND MUNAWER, Q. 1999. The arbac97 model for role-based administration of roles. ACM Transactions on Information and System Security 1, 2, 105-135.