Author_Institution :
Inst. for Cyber Security Lutcher Brown Endowed Chair in Cyber Security, Univ. of Texas at San Antonio, San Antonio, TX
Abstract :
The ASCAA principles for next-generation access control were recently formulated (Ravi Sandhu and Venkata Bhamidipati, "The ASCAA Principles for Next-Generation Role-Based Access Control." 3rd International Conference on Availability, Reliability and Security (ARES), Barcelona, Spain, March 4-7, 2008. Keynote Lecture.). ASCAA stands for abstraction (i.e., abstract privileges), separation (i.e., separation of administrative functions), containment (subsumes least privilege, separation of duties and other constraints, as well as modern techniques such as usage and rate limits), automation (covering acquisition of privileges as well as automated revocation) and accountability (including the recognition that sensitive operations require an enhanced level of auditing, notification or authentication). This talk will discuss how these principles apply to secure collaboration systems.
Keywords :
authorisation; groupware; collaboration systems; next-generation access control; role based models; Access control; Authentication; Authorization; Automation; Availability; Computer security; Information security; International collaboration; Online Communities/Technical Collaboration; Protocols; Access control; role based models; secure collaboration systems;
