Title :
Specification and enforcement of object-oriented RBAC model
Author :
Zhang, Chang N. ; Yang, Cungang
Author_Institution :
Dept. of Comput. Sci., Regina Univ., Sask., Canada
Abstract :
Access control for protection and sharing of information and physical resources is an essential component of any multi-user computer systems. Role-based-access-control (RBAC) has been introduced and has offered a powerful means of specifying access control decisions, as well as reducing the cost of administrating access control policies and making them less error-prone. We proposed an object-oriented RBAC model (ORBAC) and its formal specifications to describe the relationships of the basic elements of the model. Furthermore, an efficient ORBAC implementation method was proposed to deal with statically and dynamically role authorization so that the problem of separation of duties can be solved
Keywords :
access control; computer networks; formal specification; object-oriented methods; security of data; telecommunication security; access control policies; formal specifications; information sharing; multi-user computer systems; object-oriented RBAC model enforcement; object-oriented RBAC model specification; physical resources sharing; role-based-access-control; security management; security policy administration; Access control; Authorization; Computer errors; Costs; Error correction; Formal specifications; Object oriented modeling; Physics computing; Power system modeling; Power system protection;
Conference_Titel :
Electrical and Computer Engineering, 2001. Canadian Conference on
Conference_Location :
Toronto, Ont.
Print_ISBN :
0-7803-6715-4
DOI :
10.1109/CCECE.2001.933700
