The RRA97 Model for Role-Based Administration of Role Hierarchies

نویسندگان

  • Ravi S. Sandhu
  • Qamar Munawer
چکیده

Role-based access control (RBAC) has recently received a lot of attention due to its exibility, expressive power and simplicity in administration. In RBAC permissions are associated with roles and users are made members of roles thereby acquiring the associated permissions. Centralized management of RBAC in large systems is a tedious and costly task. An appealing possibility is to use RBAC itself to facilitate decentralized administration of RBAC. The recently proposed ARBAC97 (administrative RBAC '97) model identi es components called URA97, PRA97 and RRA97 for administration of user-role, permission-role and role-role assignments respectively. URA97 and PRA97 have already been described in detail in the literature, whereas RRA97 has so far not been de ned. The central contribution of this paper is to give a complete and formal de nition of RRA97, thereby completing the ARBAC97 model. The e ect of rolerole assignment is to construct a role hierarchy (that is, a partial order) in which senior roles inherit permissions from junior roles. Modi cations to the role hierarchy can have drastic impact on the e ective distribution of permissions to roles. At the same time we would like to decentralize this aspect of RBAC administration so that, for example, it should be possible for project security o cers to rearrange roles within a project without impacting other role relationships within the department in which the project exists. RRA97 shows how this goal can be achieved.

برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

منابع مشابه

The ARBAC99 Model for Administration of Roles

Role-Based Access Control (RBAC) is a exible and policy-neutral access control technology. For large systems|with hundreds of roles, thousands of users and millions of permissions|managing roles, users, permissions and their interrelationships is a formidable task that cannot realistically be centralized in a small team of security administrators. An appealing possibility is to use RBAC itself ...

متن کامل

Administration in Role - Based Security Systems 1

This paper examines the concept of role-based protection and, in particular, role organization. From basic role relationships, a model for role organization is developed. The role graph model, its operator semantics based on graph theory and algorithms for role administration are proposed. The role graph model, in our view, presents a very generalized form of role organization for access rights...

متن کامل

An Explanatory Model for Individual Performance Based on a Commitment Human Resource Approach

Enhancing employee performance is of great concern among state organizations. The purpose of this article is to study the impact of perceived committed HRM on individual performance with the mediating roles of job stress and job commitment and the moderating roles of job skills and perceived supervisor support among the employees of the Education Department of Qazvin Province. Based on Morgan’s...

متن کامل

Testing the Structural Model of Job Characteristics, Organizational Climate and Extra-Organizational Factors on the Transfer of Education with the Role Mediation of Strategies Transfer

The purpose of this study was to investigate the role of job factors, constructive organizational climate and extra-organizational factors on the transfer of learning with the mediating role of learning transfer mechanisms on the consequences of learning. The research method was descriptive-survey and based on structural equations. The statistical population of the study included all managers, ...

متن کامل

Testing the Structural Model of Job Characteristics, Organizational Climate and Extra-Organizational Factors on the Transfer of Education with the Role Mediation of Strategies Transfer

The purpose of this study was to investigate the role of job factors, constructive organizational climate and extra-organizational factors on the transfer of learning with the mediating role of learning transfer mechanisms on the consequences of learning. The research method was descriptive-survey and based on structural equations. The statistical population of the study included all managers, ...

متن کامل

ذخیره در منابع من


  با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید

برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

عنوان ژورنال:

دوره   شماره 

صفحات  -

تاریخ انتشار 1998