Engineering of Role/Permission Assignments

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by P. Epstein Articles by R. Sandhu

17th Annual Computer Security Applications Conference (ACSAC'01)

New Orleans, Lousiana

December 10-December 14

ISBN: 0-7695-1405-7

	ASCII Text	x
	P. Epstein, R. Sandhu, "Engineering of Role/Permission Assignments," Computer Security Applications Conference, Annual, pp. 0127, 17th Annual Computer Security Applications Conference (ACSAC'01), 2001.

	BibTex	x
	@article{ 10.1109/ACSAC.2001.991529, author = {P. Epstein and R. Sandhu}, title = {Engineering of Role/Permission Assignments}, journal ={Computer Security Applications Conference, Annual}, volume = {0}, year = {2001}, isbn = {0-7695-1405-7}, pages = {0127}, doi = {http://doi.ieeecomputersociety.org/10.1109/ACSAC.2001.991529}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computer Security Applications Conference, Annual TI - Engineering of Role/Permission Assignments SN - 0-7695-1405-7 SP EP A1 - P. Epstein, A1 - R. Sandhu, PY - 2001 VL - 0 JA - Computer Security Applications Conference, Annual ER -

P. Epstein, George Mason University Student

R. Sandhu, George Mason University

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ACSAC.2001.991529

In this paper, we develop a model for engineering role-permission assignment. Our model builds upon the well-known RBAC96 model [SCFY96]. Assigning permissions to roles is considered too complex an activity to accomplish directly. Instead we advocate breaking down this process into a number of steps. We specifically introduce the concept of Jobs, Work-patterns, and Tasks to facilitate role-permission assignment into a series of smaller steps. We describe methodologies for using this model in two different ways. In a top-down approach, roles are decomposed into permissions, whereas in a bottom-up approach, permissions are aggregated into roles.

Citation:

P. Epstein, R. Sandhu, "Engineering of Role/Permission Assignments," acsac, pp.0127, 17th Annual Computer Security Applications Conference (ACSAC'01), 2001

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.