Title :
Exploring User-to-Role Delegation in Role-Based Access Control
Author :
Wei Qiu ; Adams, Christopher
Author_Institution :
Univ. of Ottawa, Ottawa
Abstract :
Enterprises must have business security solutions that provide detection and enforcement at every point of network access. Role-based access control (RBAC) formulates that access decisions are based on the roles that individual users have as members of a system. In RBAC, there are role hierarchies in which a senior role inherits the permissions of a junior role. In order to allow a junior role to perform one or more tasks of a senior role, various delegation models have been proposed in the literature. This paper presents a new role-based delegation model called user-to-role delegation model (URDM), which supports multiple delegation, role hierarchy, and single-step delegation. Four situations are analyzed when URDM runs a multiple delegation process. A Web-based system called university delegation management system (UDMS) is designed and implemented to verify the core functionality of URDM within the first situation.
Keywords :
authorisation; commerce; business security; network access; role-based access control; university delegation management system; user-to-role delegation; Access control; Data security; Databases; Information security; Information technology; Large-scale systems; Permission; Proposals;
Conference_Titel :
Management of eBusiness, 2007. WCMeB 2007. Eighth World Congress on the
Conference_Location :
Toronto, Ont.
Print_ISBN :
0-7695-2820-1
Electronic_ISBN :
0-7695-2820-1
DOI :
10.1109/WCMEB.2007.47
