Designing Role Hierarchies for Access Control in Workflow Systems

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Reinhardt A. Botha Articles by Jan H.P. Eloff

25th Annual International Computer Software and Applications Conference (COMPSAC'01)

Chicago, Illinois

October 08-October 12

ISBN: 0-7695-1372-7

	ASCII Text	x
	Reinhardt A. Botha, Jan H.P. Eloff, "Designing Role Hierarchies for Access Control in Workflow Systems," Computer Software and Applications Conference, Annual International, pp. 117, 25th Annual International Computer Software and Applications Conference (COMPSAC'01), 2001.

	BibTex	x
	@article{ 10.1109/CMPSAC.2001.960606, author = {Reinhardt A. Botha and Jan H.P. Eloff}, title = {Designing Role Hierarchies for Access Control in Workflow Systems}, journal ={Computer Software and Applications Conference, Annual International}, volume = {0}, year = {2001}, issn = {0730-3157}, pages = {117}, doi = {http://doi.ieeecomputersociety.org/10.1109/CMPSAC.2001.960606}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computer Software and Applications Conference, Annual International TI - Designing Role Hierarchies for Access Control in Workflow Systems SN - 0730-3157 SP EP A1 - Reinhardt A. Botha, A1 - Jan H.P. Eloff, PY - 2001 VL - 0 JA - Computer Software and Applications Conference, Annual International ER -

Reinhardt A. Botha, Port Elizabeth Technikon

Jan H.P. Eloff, Rand Afrikaans University

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/CMPSAC.2001.960606

Due to the correspondence between the role abstraction in Role-based Access Control (RBAC) and the notion of organizational positions, it seems easy to construct role hierarchies. This is, however, a misconception. This paper argues that, in order to reflect the functional requirements, a role hierarchy becomes very complex. In a bid to simplify the design of role hierarchies suitable for the expression of access control requirements in workflow systems, the paper proposes a ``typed'' role hierarchy. In a ``typed'' role hierarchy a role is of a specific type. The associations between different types of roles are limited by rules that govern the construction of a role hierarchy. This paper proposes a methodology to systematically construct a ``typed'' role hierarchy. Since the ``typed'' nature of the role hierarchy is only relevant during the construction of the role hierarchy, it can seamlessly be integrated into existing RBAC schemes that support the concept of role hierarchies.

Citation:

Reinhardt A. Botha, Jan H.P. Eloff, "Designing Role Hierarchies for Access Control in Workflow Systems," compsac, pp.117, 25th Annual International Computer Software and Applications Conference (COMPSAC'01), 2001

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.