Enhancing Role-Based Access Control Model through Fuzzy Relations

I
IAS
2007
2007 The Third International Symposium on Information Assurance and Security
Abstract - Enhancing Role-Based Access Control Model through Fuzzy Relations

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Hassan Takabi Articles by Morteza Amini Articles by Rasool Jalili

2007 The Third International Symposium on Information Assurance and Security

Manchester, United Kingdom

August 29-August 31

ISBN: 0-7695-2876-7

	ASCII Text	x
	Hassan Takabi, Morteza Amini, Rasool Jalili, "Enhancing Role-Based Access Control Model through Fuzzy Relations," Information Assurance and Security, International Symposium on, pp. 131-136, 2007 The Third International Symposium on Information Assurance and Security, 2007.

	BibTex	x
	@article{ 10.1109/IAS.2007.69, author = {Hassan Takabi and Morteza Amini and Rasool Jalili}, title = {Enhancing Role-Based Access Control Model through Fuzzy Relations}, journal ={Information Assurance and Security, International Symposium on}, volume = {0}, year = {2007}, isbn = {0-7695-2876-7}, pages = {131-136}, doi = {http://doi.ieeecomputersociety.org/10.1109/IAS.2007.69}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Information Assurance and Security, International Symposium on TI - Enhancing Role-Based Access Control Model through Fuzzy Relations SN - 0-7695-2876-7 SP131 EP136 A1 - Hassan Takabi, A1 - Morteza Amini, A1 - Rasool Jalili, PY - 2007 KW - null VL - 0 JA - Information Assurance and Security, International Symposium on ER -

Hassan Takabi, Sharif University of Technology, Iran

Morteza Amini, Sharif University of Technology, Iran

Rasool Jalili, Sharif University of Technology, Iran

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/IAS.2007.69

Role-Based Access Control (RBAC) model is naturally suitable to organizations where users are assigned organizational roles with well-defined privileges. However, due to the large number of users in nowadays online services of organizations and enterprises, assigning users to roles is a tiresome task and maintaining user-role assignment up-to- date is costly and error-prone. Additionally, with the increasing number of users, RBAC may have problems in prohibiting cheat and changing roles of users. In order to categorize information and formulate security policies, human decision making is required which is naturally fuzzy in the real world. This leads using a fuzzy approach to address the issue in order to provide a more practical solution. In this paper, applicability of fuzzy set theory to RBAC has been investigated by identifying access control building blocks which are fuzzy in essence. An existing RBAC model is extended to allow imprecise access control policies, using the concept of trustworthiness which is fuzzy in nature. We call the extended model as Fuzzy RBAC. Applicability of the extended model has been evaluated through some case studies.

Citation:

Hassan Takabi, Morteza Amini, Rasool Jalili, "Enhancing Role-Based Access Control Model through Fuzzy Relations," ias, pp.131-136, 2007 The Third International Symposium on Information Assurance and Security, 2007

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.