• DocumentCode
    1437776
  • Title

    Design and specification of role based access control policies

  • Author

    Hitchens, M. ; Varadharajan, V.

  • Author_Institution
    Distributed Syst. & Network Security Res. Unit, Univ. of Western Sydney, Nepean, NSW, Australia
  • Volume
    147
  • Issue
    4
  • fYear
    2000
  • fDate
    8/1/2000 12:00:00 AM
  • Firstpage
    117
  • Lastpage
    129
  • Abstract
    The authors describe a language based approach to the specification of authorisation policies that can be used to support the range of access control policies in commercial object systems. They discuss the issues involved in the design of a language for role based access control systems. The notion of roles is used as a primitive construct within the language. The basic constructs of the language are discussed and the language is used to specify several access control policies such as role based access control; static and dynamic separation of duty delegation and joint action based access policies. The language is flexible and is able to capture meta-level operations, and it is often these features which are significant when it comas to the applicability of an access control system to practical real situations
  • Keywords
    authorisation; formal specification; specification languages; authorisation policies; joint action based access policies; language based approach; role based access control policies; separation of duty delegation; specification;
  • fLanguage
    English
  • Journal_Title
    Software, IEE Proceedings -
  • Publisher
    iet
  • ISSN
    1462-5970
  • Type

    jour

  • DOI
    10.1049/ip-sen:20000792
  • Filename
    902348
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=1437776