SARBAC07: A scoped administration model for RBAC with hybrid hierarchy

Proceedings - IAS 2007 3rd Internationl Symposium on Information Assurance and Security

Volumn , Issue , 2007, Pages 149-154

  Yue, Zhang ^a   Joshi, James B D ^b  

^a University of Pittsburgh   (United States)

^b UNIVERSITY OF PITTSBURGH   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

(MIN ,MAX ,+) FUNCTIONS; ADMINISTRATION MODEL; INFORMATION ASSURANCE AND SECURITY (IAS); ROLE-BASED;

EID: 46749139129     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/IAS.2007.90     Document Type: Conference Paper

References (15)

1. J. Crampton, G. Loizou, "Administrative scope: A foundation for role-based administrative models", ACM Transactions on Information and System Security (TISSEC), Volume 6, Issue 2, May. 2003, pp. 201-231.
2. S. Du, and J. B. D. Joshi, "Supporting Authorization Query and Inter-domain Role Mapping in Presence of Hybrid Role Hierarchy," The 11th ACM Symposium on Access Control Models and Technologies, USA, June 2006.
3. D. Ferraioio, J. Cugini, and R. Kuhn, "Role-based access control (RBAC): Features and motivations", In Proceedings of 11th Annual Computer Security Application Conference, New Orleans, LA, Dec. 1995, pp. 241-48.
4. D. Ferraiolo, R. Sandhu, S. Gavrila, D. Kuhn, and R. Chandramouli, " Proposed NIST standard for role-based access control," ACM Transactions on Information and Systems Security, vol. 4, no. 3, pp. 224-274, August 2001.
5. st ACM Workshop on Role-Based Access Control, ACM, 1997.
6. J. B. D. Joshi, E. Bertino, and A Ghafoor, "Temporal hierarchies and inheritance semantics for GTRBAC", In Proceedings of the 7th ACM symposium on Access control models and technologies, New York, NY, USA, pp. 74-83.
7. J. B. D. Joshi, E. Bertino, U. Latif, and A. Ghafoor, "Generalized Temporal Role Based Access Control Model," IEEE Transactions on Knowledge and Data Engineering, Volume 7, Issue 1, Jan. 2005.
8. J. B. D. Joshi, E. Bertino, and A. Ghafoor, "Formal Foundations for Hybrid Role Hierarchy", ACM Transaction in Information and Systems Security (accepted).
9. N. Li, "A Critique of the ANSI Standard on Role Based Access Control", to appear in IEEE Security and Privacy.
10. J. D. Moffett and E. C. Lupu, "The uses of role hierarchies in access control", Proceedings of the fourth ACM workshop on Role-based access control, 1999, pp. 153-160.
11. S. Oh, R. Sandhu, "A model for role administration using organization structure", Proceedings of the 7th ACM symposium on Access control models and technologies, Monterey, CA 2002.
12. R. Sandhu, E. J. Coyne, H. L. Feinstein, and C. E. Youman, "Role-Based Access Control Models", IEEE Computer 29(2): pp. 38-47, IEEE Press, 1996.
13. R. Sandhu, "Role activation hierarchies", Proceedings of the third ACM workshop on Role-based access control, Fairfax, Virginia, United States, 1998, pp. 33-40.
14. R. Sandhu, V. Bhamidipati, and Q. Munawer, "The ARBAC97 Model for Role-Based Administration of Roles", ACM Transactions on Information and System Security (TISSEC), Volume 2, Issue 1, Feb. 1999, pp. 105-135.
15. th Computer Security Applications Conference, Arizona, US, Feb 1999, pp. 229-2