Name
Abstract | ||
|---|---|---|
Role-based access control (RBAC) is increasingly attracting attention because it reduces the complexity and cost of security administration by interposing the notion of role in the assignment of permissions to users. In this paper, we present a formal framework relying on an extension of the π calculus to study the behavior of concurrent systems in a RBAC scenario. We define a type system ensuring that the specified policy is respected during computations, and a bisimulation to equate systems. The theory is then applied to three meaningful examples, namely finding the 'minimal' policy to run a given system, refining a system to be run under a given policy (whenever possible), and minimizing the number of users in a given system without changing the overall behavior. |
Year | DOI | Venue |
|---|---|---|
2004 | 10.1109/CSFW.2004.1 | CSFW |
Keywords | Field | DocType |
thatthe specified policy,complexity andcost,theoverall behavior,process calculi,rbac,type systems,le-based access control,behavioural equivalences,meaningful example,rbac scenario,extension ofthe,concurrent systemsin,type system,formal framework,authorisation,calculus of communicating systems,role based access control,web server,pi calculus,database systems,complexity,nist,security,calculus,access control,bisimulation | Permission,Computer science,Calculus of communicating systems,Role-based access control,Theoretical computer science,NIST,Access control,Bisimulation,Calculus,Web server,Distributed computing,Computation | Conference |
ISSN | ISBN | Citations |
1063-6900 | 0-7695-2169-X | 10 |
PageRank | References | Authors |
0.58 | 23 | 3 |
Name | Order | Citations | PageRank |
|---|---|---|---|
| Chiara Braghin | 1 | 105 | 8.86 |
| Daniele Gorla | 2 | 270 | 22.67 |
| Vladimiro Sassone | 3 | 1498 | 104.86 |