Paper Info
Title
A model of OASIS role-based access control and its support for active security
Abstract
OASIS is a role-based access control architecture for achieving secure interoperation of services in an open, distributed environment. Services define roles and implement formally specified policy for role activation and service use; users must present the required credentials, in the specified context, in order to activate a role or invoke a service. Roles are activated for the duration of a session only. In addition, a role is deactivated immediately if any of the conditions of the membership rule associated with its activation becomes false.OASIS does not use role delegation but instead defines the notion of appointment, whereby a user in some role may issue an \actright{} to some other user. The role activation conditions of services may include \actright{}s, prerequisite roles and environmental constraints.We motivate our approach and formalise OASIS. First, a basic model is presented followed by an extended model which includes parameterisation.
Year
DOI
Venue
2002
10.1145/581271.581276
ACM Transactions on Information and System Security (TISSEC)
Keywords
Field
DocType
basic model,role-based access control,environmental constraint,formalise oasis,rbac,own access control policy,access control,active security,oasis,certificates,extended model,appointment certificate,role delegation,prerequisite role,certain role,role-based access control architecture,role activation,role activation condition,service use,parametrized role,fine-grained access control,service level agreements,role based access control,specified context,policy,oasis role-based access control,distributed environment
Architecture,Distributed Computing Environment,Computer security,Computer science,Role-based access control,Interoperation,Access control,Delegation
Journal
Volume
Issue
Citations 
5
4
173
PageRank 
References 
Authors
10.22
33
3
Search Limit
100173
Name
Order
Citations
PageRank
Walt Yao117310.22
Ken Moody293585.75
Jean Bacon32245177.11