Obligations for Role Based Access Control

	This Article
	Subscribers, please Login Purchase article: $19 PDF RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Gansen Zhao Articles by David Chadwick Articles by Sassa Otenko

21st International Conference on Advanced Information Networking and Applications Workshops (AINAW'07)

Niagara Falls, Ontario, Canada

May 21-May 23

ISBN: 0-7695-2847-3

	ASCII Text	x
	Gansen Zhao, David Chadwick, Sassa Otenko, "Obligations for Role Based Access Control," Advanced Information Networking and Applications Workshops, International Conference on, vol. 1, pp. 424-431, 21st International Conference on Advanced Information Networking and Applications Workshops (AINAW'07), 2007.

	BibTex	x
	@article{ 10.1109/AINAW.2007.267, author = {Gansen Zhao and David Chadwick and Sassa Otenko}, title = {Obligations for Role Based Access Control}, journal ={Advanced Information Networking and Applications Workshops, International Conference on}, volume = {1}, year = {2007}, isbn = {0-7695-2847-3}, pages = {424-431}, doi = {http://doi.ieeecomputersociety.org/10.1109/AINAW.2007.267}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Advanced Information Networking and Applications Workshops, International Conference on TI - Obligations for Role Based Access Control SN - 0-7695-2847-3 SP424 EP431 A1 - Gansen Zhao, A1 - David Chadwick, A1 - Sassa Otenko, PY - 2007 KW - null VL - 1 JA - Advanced Information Networking and Applications Workshops, International Conference on ER -

Gansen Zhao, University of Kent, UK

David Chadwick, University of Kent, UK

Sassa Otenko, University of Kent, UK

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/AINAW.2007.267

Role based access control has been widely researched in security critical systems. Conventional role based access control is a passive model, which makes authorization decisions on requests, and the authorization decisions contain only information about whether the corresponding requests are authorised or denied. One of the potential improvements for role based access control is the augmentation of obligations, where obligations are tasks and requirements to be fulfilled before, after or together with the enforcement of the authorization decisions. This paper conducts a literature review of role based access control and obligation related research, and proposes a design for the augmentation of obligations in the context of the RBAC standard. The design is then validated by implementation in the PERMIS RBAC authorization infrastructure. The paper also discusses the possible nondeterminism caused by overlapping authorisations.

Citation:

Gansen Zhao, David Chadwick, Sassa Otenko, "Obligations for Role Based Access Control," ainaw, vol. 1, pp.424-431, 21st International Conference on Advanced Information Networking and Applications Workshops (AINAW'07), 2007

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.