Name
Abstract | ||
|---|---|---|
Role based access control (RBAC) has emerged as an effective solution for several access control problems of relevance today. To cope with the growing requirements, core RBAC has been extended over temporal, spatial and spatiotemporal dimensions. The various models developed so far predominantly deal with monotonic policies which allow access only if there is a corresponding positive authorization. However, in many practical situations, there is a need for specifying policies that deny access through negative authorization. The authorization may again depend on different spatiotemporal conditions. In this paper, the notion of user-role-permission (URP) relation is used to incorporate negative authorization in ESTARBAC, one of the existing spatiotemporal RBAC models. The proposed method has been compared with two other existing approaches. We also analyze how negative authorization can facilitate expressing some of the important access control policies relevant for an organization. |
Year | DOI | Venue |
|---|---|---|
2009 | 10.1109/NetCoM.2009.23 | Chennai |
Keywords | DocType | ISBN |
access control problem,negative authorization,important access control policy,spatiotemporal role,different spatiotemporal condition,access control,corresponding positive authorization,existing approach,core rbac,existing spatiotemporal rbac model,spatiotemporal dimension,authorisation,role based access control,computational modeling,data mining,rbac,authorization | Conference | 978-0-7695-3924-9 |
Citations | PageRank | References |
0 | 0.34 | 15 |
Authors | ||
2 | ||
Name | Order | Citations | PageRank |
|---|---|---|---|
| Samrat Mondal | 1 | 100 | 18.02 |
| Shamik Sural | 2 | 1008 | 96.36 |