Affiliation:
1. George Mason Univ., Fairfax, VA
Abstract
In role-based access control (RBAC), permissions are associated with roles' and users are made members of roles, thereby acquiring the roles; permissions. RBAC's motivation is to simplify administration of authorizations. An appealing possibility is to use RBAC itself to manage RBAC, to further provide administrative convenience and scalability, especially in decentralizing administrative authority, responsibility, and chores. This paper describes the motivation, intuition, and formal definition of a new role-based model for RBAC administration. This model is called ARBAC97 (administrative RBAC '97) and has three components: URA97 (user-role assignment '97), RPA97 (permission-role assignment '97), and RRA97 (role-role assignment '97) dealing with different aspects of RBAC administration. URA97, PRA97, and an outline of RRA97 were defined in 1997, hence the designation given to the entire model. RRA97 was completed in 1998. ARBAC97 is described completely in this paper for the first time. We also discusses possible extensions of ARBAC97.
Publisher
Association for Computing Machinery (ACM)
Subject
Safety, Risk, Reliability and Quality,General Computer Science
Cited by
221 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献
1. Blockchain-based access control architecture for multi-domain environments;Pervasive and Mobile Computing;2024-02
2. Securing distributed systems: A survey on access control techniques for cloud, blockchain, IoT and SDN;Cyber Security and Applications;2023-12
3. Role of Access Control in Information Security: A Security Analysis Approach;Information Security and Privacy in the Digital World - Some Selected Topics;2023-09-27
4. SMT-Based Verification of NGAC Policies;2023 IEEE 47th Annual Computers, Software, and Applications Conference (COMPSAC);2023-06
5. Security Analysis of Access Control Policies for Smart Homes;Proceedings of the 28th ACM Symposium on Access Control Models and Technologies;2023-05-24