Title :
Supporting Negative Authorization in Spatiotemporal Role Based Access Control
Author :
Mondal, Samrat ; Sural, Shamik
Author_Institution :
Sch. of Inf. Technol., IIT Kharagpur, Kharagpur, India
Abstract :
Role based access control (RBAC) has emerged as an effective solution for several access control problems of relevance today. To cope with the growing requirements, core RBAC has been extended over temporal, spatial and spatiotemporal dimensions. The various models developed so far predominantly deal with monotonic policies which allow access only if there is a corresponding positive authorization. However, in many practical situations, there is a need for specifying policies that deny access through negative authorization. The authorization may again depend on different spatiotemporal conditions. In this paper, the notion of user-role-permission (URP) relation is used to incorporate negative authorization in ESTARBAC, one of the existing spatiotemporal RBAC models. The proposed method has been compared with two other existing approaches. We also analyze how negative authorization can facilitate expressing some of the important access control policies relevant for an organization.
Keywords :
authorisation; negative authorization; positive authorization; role based access control; spatial dimension; spatiotemporal dimension; temporal dimension; user-role-permission relation; Access control; Authorization; Control systems; Information technology; Permission; Qualifications; Smart cards; Spatiotemporal phenomena; Access Control; Negative Authorization; RBAC; Spatiotemporal Context;
Conference_Titel :
Networks and Communications, 2009. NETCOM '09. First International Conference on
Conference_Location :
Chennai
Print_ISBN :
978-1-4244-5364-1
Electronic_ISBN :
978-0-7695-3924-9
DOI :
10.1109/NetCoM.2009.23
