Title :
ABDM: An extended flexible delegation model in RBAC
Author :
Li, Min ; Wang, Hua
Author_Institution :
Dept. of Math. & Comput., Univ. of Southern Queensland, Toowoomba, QLD
Abstract :
Role-based access control (RBAC) is recognized as an efficient access control model and its delegation authority has been proved to be flexible and useful for information sharing on distributed environment. In todaypsilas highly dynamic distributed systems, collaboration is necessary for information sharing with others, so a user may want to delegate a collection of permissions, named an ability, to another user or all members of a group. Based on this fact, this paper builds a new ability-based delegation model (ABDM) within RBAC and develops its delegation algorithm. The framework includes both ability-based user-user delegation and user-group delegation. Further, we analyze delegation granting and revocation authorization. Compared with other existing delegation models, this ability-based delegation model provides great flexibility in authority management.
Keywords :
authorisation; distributed processing; groupware; ability-based delegation model; authority management; distributed systems; information sharing; role-based access control; Access control; Authorization; Collaboration; Distributed computing; Humans; Mathematical model; Mathematics; Permission; Project management; Security;
Conference_Titel :
Computer and Information Technology, 2008. CIT 2008. 8th IEEE International Conference on
Conference_Location :
Sydney, NSW
Print_ISBN :
978-1-4244-2357-6
Electronic_ISBN :
978-1-4244-2358-3
DOI :
10.1109/CIT.2008.4594707
