Detecting conflicts in a role-based delegation model

Proceedings - Annual Computer Security Applications Conference, ACSAC

Volumn 2001-January, Issue , 2001, Pages 117-126

  Schaad, Andreas ^a  

^a UNIVERSITY OF YORK   (United Kingdom)

Author keywords

Access control; Analytical models; Computer science; NIST; Permission; Role transfer; Runtime; Specification languages

Indexed keywords

ANALYTICAL MODELS; COMPUTATIONAL LINGUISTICS; COMPUTER SCIENCE; SECURITY OF DATA; SECURITY SYSTEMS; SPECIFICATION LANGUAGES; SPECIFICATIONS;

CONSTRAINT SPECIFICATIONS; DELEGATION ACTIVITIES; EXECUTABLE SPECIFICATION LANGUAGES; NIST; PERMISSION; ROLE TRANSFER; RUNTIMES; SIMULATION AND ANALYSIS;

ACCESS CONTROL;

EID: 39749103319     PISSN: 10639527     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/ACSAC.2001.991528     Document Type: Conference Paper

References (19)

1. G. Ahn. RCL 2000. Phd dissertation, George Mason University, 2000
2. E. Barka and R. Sandhu. Framework for Role-Based Delegation Models. In 16th Annual Computer Security Applications Conference, New Orleans, Louisiana, 2000
3. F. Chen and R. Sandhu. Constraints for RBAC. In 1st ACM Workshop on Role-Based Access Control, pages 39-46, Gaithersburg, MD, 1995
4. D. Clark and D. Wilson. A Comparison of Commercial and Military Security Policies. In IEEE Computer Society Press, editor, IEEE Symposium on Security and Privacy, pages 184-194, Oakland, California, 1987
5. W. Clocksin and C. Mellish. Programming in Prolog. Springer, 4th edition, 1996
6. N. Damianou, N. Dulay, E. Lupu, and M. Sloman. The Ponder Policy Specification Language. In Policies for Distributed Systems and Networks, volume 1995, pages 18-38, Bristol, 2001. Springer Lecture Notes in Computer Science
7. R. Kuhn. Mutual exclusion of roles as a means of implementing separation of duty in role-based access control systems. In Proceedings of the second ACM workshop on Role-based access control, pages 23-30, 1997
8. Z. Longhua, G. Ahn, and Chu. B. A Rule-based Framework for Role-Based Delegation. In ACM SACMAT, Chantilly, VA, USA, 2001
9. E. Lupu, D. Marriott, M. Sloman, and N. Yialelis. A policy based role framework for access control. Proceedings of the first ACMWorkshop on Role-based access control, pages 215-224, 1996
10. J. Moffett and M. Sloman. The Source of Authority for Commercial Access Control. IEEE Computer, pages 59-69, 1988
11. M. Nash and K. Poland. Some Conundrums Concerning Separation of Duty. In IEEE Computer Society Press, editor, IEEE Symposium on Security and Privacy, pages 201-209, Oakland, CA, 1990
12. R. Sandhu. Transaction Control Expressions for Separation of Duties. In 4th Aerospace Computer Security Conference, pages 282-286, Arizona, 1988
13. R. Sandhu, V. Bhamidipati, and Q. Munawer. The ARBAC97 model for role-based administration of roles. ACM Transactions. Inf. Syst. Security, 2(1):105-135, 1999
14. R. Sandhu, E. Coyne, H. Feinstein, and C. Youman. Role-based access control models. IEEE Computer, 29(2):38-47, 1996
15. R. Sandhu, D. Ferraiolo, and R. Kuhn. The NIST Model for Role-based Access Control: Towards a Unified Standard. In 5th ACM RBAC, Berlin, Germany, 2000
16. A. Schaad and J. Moffett. The Incorporation of Control Principles into Access Control Policies (Extended Abstract). In Hewlett Packard Policy Workshop, Bristol, 2001
17. A. Schaad, J. Moffett, and J. Jacob. The access control system of a European bank-A case study. In ACM Symposium on access control models and technologies (SACMAT), Chantilly, VA, USA, 2001
18. R. Simon and M. Zurko. Separation of Duty in Role-Based Environments. In Computer Security Foundations Workshop X, Rockport, Massachusetts, 1997
19. M. Sloman and J. Moffett. Delegation of Authority. In Integrated Network Management II, pages 595-606. North Holland, 1991