Abstract | ||
---|---|---|
In Role Based Access Control (RBAC) systems, it is necessary and important to update the role-permission assignments in order to reflect the evolutions of the system transactions. However, role updating is generally complex and challenging, especially for large-scale RBAC systems. This is because the resulting state is usually expected to meet various requirements and constraints. In this paper, we focus on a fundamental problem of role updating in RBAC, which determines whether there exists a valid role-permission assignment, i.e., whether it can satisfy all the requirements of the role updating and without violating any role-capacity or permission-capacity constraint. We formally define such a problem as the Role Updating Feasibility Problem (RUFP), and study the computational complexity of RUFP in different subcases. Our results show that although several subcases are solvable in linear time, this problem is NP-complete in the general case. |
Year | DOI | Venue |
---|---|---|
2014 | 10.1016/j.ipl.2014.06.003 | Information Processing Letters |
Keywords | Field | DocType |
computational complexity,role based access control,role updating feasibility problem | Existential quantification,Computer science,Role-based access control,Theoretical computer science,Time complexity,Computational complexity theory,Distributed computing | Journal |
Volume | Issue | ISSN |
114 | 11 | 0020-0190 |
Citations | PageRank | References |
2 | 0.37 | 14 |
Authors | ||
5 |
Name | Order | Citations | PageRank |
---|---|---|---|
Jianfeng Lu | 1 | 26 | 7.61 |
Dewu Xu | 2 | 26 | 1.86 |
Lei Jin | 3 | 60 | 10.34 |
Jianmin Han | 4 | 25 | 5.74 |
Hao Peng | 5 | 2 | 0.71 |