Modular authorization and administration

ACM Transactions on Information and System Security

Volumn 7, Issue 3, 2004, Pages 363-391

  Wedde, Horst F ^a   Lischka, Mario ^a  

^a TU DORTMUND UNIVERSITY   (Germany)

Author keywords

Composability; Modularity; Petri Nets; Work flow

Indexed keywords

COMPOSABILITY; MODULARITY; SECURITY AND PROTECTION; WORK-FLOW;

COMPUTER SOFTWARE; CONSTRAINT THEORY; MATHEMATICAL MODELS; PETRI NETS; RELIABILITY; SECURITY OF DATA;

INFORMATION TECHNOLOGY;

EID: 4444250230     PISSN: 10949224     EISSN: None     Source Type: Journal    
DOI: 10.1145/1015040.1015042     Document Type: Article

References (18)

1. AALST, W. 1998. The application of petri nets to workflow management. J. Circ. Syst. Comput. 8, 1, 21-66.
2. FERRAIOLO, D. F., SANDHU, R., GAVRILA, S., KUHN, D. R., AND CHANDRAMOULI, R. 2001. A proposed standard for role-based access control. ACM Trans. Inf. Syst. Secur. 4, 3 (Aug.), 224-274.
3. GENRICH, H. J. AND LAUTENBACH, K. 1979. The analysis of distributed systems by means of predicate/transition-nets. In Semantic of Concurrent Computation, G. Kahn, ed. Lecture Notes in Computer Science, vol. 70. Springer Verlag, Berlin, Heidelberg, New York, 123-146.
4. GHEZZI, C., MANDRIOLI, D., MORASCA, S., AND PEZZÈ, M. 1991. A unified high-level petri net model for time-critical systems. IEEE Trans. Softw. Eng. 17, 2 (Feb.), 160-172.
5. JAJODIA, S., SAMARATI, P., AND SUBRAHMANIAN, V. S. 1997a. A logical language for expressing authorizations, In Proceedings of the IEEE Symposium on Research in Security and Privacy, Oakland, CA. 31-42.
6. JAJODIA, S., SAMARATI, P., SUBRAHMANIAN, V. S., AND BERTINO, E. 1997b. A unified framework for enforcing multiple access control policies security. In Proceedings of the ACM SIGMOD International Conference on Management of Data. SIGMOD Record, vol. 26, 2. ACM Press, New York, 474-485.
7. KUHLMANN, M., SHOHAT, D., AND SCHIMPF, G. 2003. Role mining - revealing business roles for security administration using data mining technology. In Proceedings of the 8th ACM Symposium on Access Control Models and Technologies. ACM Press, Como, Italy, 179-186.
8. NYANCHAMA, M. AND OSBORN, S. L. 1994. Access rights administration in role-based security systems. In IFIP Workshop on Database Security. 37-56.
9. OH, S. AND SANDHU, R. 2002. A model for role administration using organization structure. In Proceedings of the 7th ACM Symposium on Access Control Models and Technologies (SACMAT), R. Sandhu and E. Bertino, eds. ACM SIGSAC, ACM Press, Monterey, CA, USA, 155-162.
10. OSBORN, S. AND GUO, Y. 2000. Modeling users in role-based access control. In Proceedings of the 5th ACM Workshop on Role-Based Access Control, K. Rebensburg, C. Youman, and V. Atluri, eds. ACM SIGSAC, ACM Press, Berlin, Germany, 31-38.
11. SANDHU, R., BHAMIDIPATI, V., AND MUNAWER, Q. 1999. The ARBAC97 model for role-based administration of roles. ACM Trans. Inf. Syst. Secur. 2, 1 (Feb.), 105-135.
12. SANDHU, R. AND MUNAWER, Q. 1999. The ARBAC99 model for administration of roles. In Proceedings of the 15th Annual Computer Security Applications Conference, Phoenix, Arizona.
13. SCHIFFERS, M. AND WEDDE, H. 1978. Analyzing program solutions of coordination problems by cpnets. In Proceedings of the 7th Symposium on Mathematical Foundations of Computer Science, A. Mazurkiewicz, ed. Lecture Notes in Computer Science, vol. 64. Springer Verlag, Zakopane, Poland, 416-422.
14. VALK, R. 1983. Infinitive behaviour of petri nets. Theo. Comput. Sci. 25, 311-341.
15. WEDDE, H. F. AND LISCHKA, M. 2001. Modular authorization. In Proceedings of the 6th ACM Symposium on Access Control Models and Technologies (SACMAT), R. Sandhu and T. Jaeger, eds. ACM SIGSAC, ACM Press, Chantilly, Virginia, 97-105.
16. WEDDE, H. F. AND LISCHKA, M. 2003a. Composing heterogenous access policies between organizations. In Proceedings of the IADIS International Conference e-Society 2003. International Association for Development of the Information Society, Lisbon/Portuagal.
17. WEDDE, H. F. AND LISCHKA, M. 2003b. Cooperative role-based administration. In Proceedings of the 8th ACM Symposium on Access Control Models and Technologies (SACMAT), E. Ferrari and D. Ferraiolo, eds. ACM SIGSAC, ACM Press, Como, Italy.
18. WEDDE, H. F. AND LISCHKA, M. 2004. Role-based access control in ambient and remote space. In Proceedings of the 9th ACM Symposium on Access Control Models and Technologies (SACMAT), T. Jaeger and E. Ferrari, eds. ACM SIGSAC, ACM Press, Yorktown Heights, NY.