Abstract | ||
---|---|---|
Formal methods and reasoning techniques can be useful tools for the representation and analysis of security policies and access control procedures. This paper presents a logical approach to representing and evaluating role-based access control (RBAC) policies, using description logics and a proof method, called tableaux. We propose a new variation of the RBAC model with a classification mechanism for objects. The key feature supported is the ability to model object classes, and class hierarchies used to restrict the validity and to control the propagation of authorization rules. We also demonstrate how access control decisions are made by tableaux, considering role and class hierarchies. |
Year | DOI | Venue |
---|---|---|
2007 | 10.1007/978-3-540-72163-5_14 | ISPEC |
Keywords | Field | DocType |
rbac policy,formal method,classification mechanism,authorization rule,model object class,description logic,access control procedure,class hierarchy,rbac model,access control decision,object class hierarchy,role-based access control,security policy,role based access control,access control | Computer science,Computer security,Description logic,Role-based access control,Theoretical computer science,Class hierarchy,Access control,Security policy,Formal methods,Hierarchy,restrict | Conference |
Volume | ISSN | Citations |
4464 | 0302-9743 | 14 |
PageRank | References | Authors |
0.83 | 14 | 2 |
Name | Order | Citations | PageRank |
---|---|---|---|
Jung Hwa Chae | 1 | 16 | 1.24 |
Nematollaah Shiri | 2 | 280 | 28.31 |