A comprehensive modeling framework for role-based access control policies
نویسندگان
چکیده
منابع مشابه
A comprehensive modeling framework for role-based access control policies
Prohibiting unauthorized access to critical resources and data has become a major requirement for enterprises. Access control (AC) mechanisms manage requests from users to access system resources; the access is granted or denied based on authorization policies defined within the enterprise. One of the most used AC paradigms is role-based access control (RBAC). In RBAC, access rights are determi...
متن کاملA Logic-Based Framework for Web Access Control Policies
Title of dissertation: A LOGIC-BASED FRAMEWORK FOR WEB ACCESS CONTROL POLICIES Vladimir Kolovski, Doctor of Philosophy, 2008 Dissertation directed by: Professor James Hendler Department of Computer Science With the widespread use of web services, there is a need for adequate security and privacy support to protect the sensitive information these services could provide. As a result, there has be...
متن کاملFramework for Enforcing Multiple Access Control Policies
Although several access control policies can be devised for controlling access to information, all existing authorization models, and the corresponding enforcement mechanisms, are based on a speciic policy (usually the closed policy). As a consequence, although diierent policy choices are possible in theory, in practice only a speciic policy can be actually applied within a given system. Howeve...
متن کاملParameterized Role-Based Access Control Policies for XML Documents
Role-based access control policies (RBACPs) are often used to provide access to fragments of static XML documents. There are various implementations of such RBACPs, including those that disseminate a single document superencrypted with multiple cryptographic keys, in such a way that the stated policy is enforced. However, most existing approaches are subject to role proliferation, especially in...
متن کاملMeta-Policies for Distributed Role-Based Access Control Systems
In this paper meta-policies for access control policies are presented. There has been a lot of research into the various ways of specifying policy for a single domain. Such domains are autonomous and can be managed by the users or by a specific system administrator. It is often helpful to have a more general policy description in order to restrict the ways in which policy can be modified. Meta-...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: Journal of Systems and Software
سال: 2015
ISSN: 0164-1212
DOI: 10.1016/j.jss.2015.05.015