Access Policy Design Supported by FCA Methods
نویسندگان
چکیده
Role Based Access Control (RBAC) is a methodology for providing users in an IT system specific permissions like write or read to users. It abstracts from specific users and binds permissions to user roles. Similarly, one can abstract from specific documents and bind permission to document types. In this paper, we apply Description Logics (DLs) to formalize RBAC. We provide a thorough discussion on different possible interpretations of RBAC matrices and how DLs can be used to capture the RBAC constraints. We show moreover that with DLs, we can express more intended constraints than it can be done in the common RBAC approach, thus proving the benefit of using DLs in the RBAC setting. For deriving additional constraints, we introduce a strict methodology, based on attribute exploration method known from Formal Concept Analysis. The attribute exploration allows to systematically finding unintended implications and to deriving constraints and making them explicit. Finally, we apply our approach to a real-life example.
منابع مشابه
Measuring Access to Urban Health Services Using Geographical Information System (GIS): A Case Study of Health Service Management in Bandar Abbas, Iran
Background The current distribution of and access to health services along with the future health needs of the population have prompted wide application of Geographic Information Systems (GISs). During recent years, GIS has been used in public health management for planning and organization of healthcare services. This study investigates geographical accessibility of residential areas in Bandar...
متن کاملA Study on the Correspondence between FCA and ELI Ontologies
The description logic EL has been used to support ontology design in various domains, and especially in biology and medecine. EL is known for its efficient reasoning and query answering capabilities. By contrast, ontology design and query answering can be supported and guided within an FCA framework. Accordingly, in this paper, we propose a formal transformation of ELI (an extension of EL with ...
متن کاملBridging the gap between Use Case Analysis and Class Structure Design by Formal Concept Analysis
The early stages of software development are increasingly supported by objectoriented analysis and design (OOA/OOD) techniques. Recent methodologies suggest to combine Jacobson’s use case analysis with modelling techniques for class/object structure, object behaviour and process interaction. However, the choice and definition of objects and classes in the domain space is not supported by either...
متن کاملThe good, the bad, and the ugly: the unnecessarily broad impact of qui tam civil False Claims Act cases on rural health care providers.
The civil False Claims Act (FCA) imposes harsh penalties against parties who misappropriate federal funds. The statute's qui tam whistle-blower provisions create strong financial incentives for private individuals to bring and pursue FCA cases against health providers on the government's behalf--even where government attorneys decline to intervene. FCA cases where the government declined to int...
متن کاملUnified External Data Access Implementation in Formal Concept Analysis Research Toolbox
Formal Concept Analysis (FCA) provides mathematical models, methods and algorithms for data analysis. However, by now there is no easily available program system, which would provide data analyst with unified, intelligible and transparent access to various external data sources with large amount of heterogeneous data for subsequent FCA-based knowledge discovery. The lack of such tools complicat...
متن کامل