Title :
Hybrid role hierarchy for generalized temporal role based access control model
Author :
Joshi, James B D ; Bertino, Elisa ; Ghafoor, Arif
Author_Institution :
Sch. of Electr. & Comput. Eng., Purdue Univ., West Lafayette, IN, USA
Abstract :
A generalized temporal role based access control (GTRBAC) model that captures an exhaustive set of temporal constraint needs for access control has been proposed. GTRBAC´s language constructs allow one to specify various temporal constraints on role, user-role assignments and role-permission assignments. We present the notion of different types of role hierarchies based on the permission-inheritance and role activation semantics. In particular, we look at how new hierarchical relations between a pair of roles that are not directly related can be derived through other well-defined hierarchically related roles. When the different hierarchy types coexist in a role hierarchy, inferring such derived hierarchical relations between a pair of roles can be complex. The results presented provide a basis for formally analyzing the derived inheritance and activation semantics between every pair of roles in a hierarchy.
Keywords :
authorisation; generalized temporal role based access control model; hybrid role hierarchy; permission-inheritance; role activation semantics; role-permission assignments; temporal constraints; user-role assignments; Access control; Computer security; Control systems; Information security; Operating systems; Permission; Pressing; Reactive power; Time factors; Workflow management software;
Conference_Titel :
Computer Software and Applications Conference, 2002. COMPSAC 2002. Proceedings. 26th Annual International
Print_ISBN :
0-7695-1727-7
DOI :
10.1109/CMPSAC.2002.1045128