The Community for Technology Leaders
Proceedings of the 1999 ICPP Workshops on Collaboration and Mobile Computing (CMC'99). Group Communications (IWGC). Internet '99 (IWI'99). Industrial Applications on Network Computing (INDAP). Multime (1999)
Wakamatsu, Japan
Sept. 21, 1999 to Sept. 24, 1999
ISSN: 1530-2016
ISBN: 0-7695-0353-5
pp: 179
HyungHyo Lee , Chonnam National University
BongNam Noh , Chonnam National University
ABSTRACT
Role-Based Access Control(RBAC) policy is being widely accepted not only as an access control policy but as a flexible permission management framework in various commercial environments. RBAC simplifies the process of security management by assigning permissions to roles not directly to individual users. As security administrators can design and manage security policies by changing the configuration of RBAC components to meet their organization's own security needs, RBAC is called policy-neutral and has ability to articulate enterprise-specific security policies. While most researches on RBAC are for defining, describing model in formal method and other important properties such as separation of duty, little work has been done on how applications should be designed and then executed in automated information systems based on RBAC security model. In this paper, we describe important, dynamic features of a session which can be used as a vehicle for building applications, and present a basic framework for session-oriented integrity enforcement application design and operation applicable to commercial environments.
INDEX TERMS
security model, access control, integrity, RBAC, separation of duty
CITATION

H. Lee and B. Noh, "An Integrity Enforcement Application Design and Operation Framework in Role-Based Access Control Systems: A Session-Oriented Approach," Proceedings of the 1999 ICPP Workshops on Collaboration and Mobile Computing (CMC'99). Group Communications (IWGC). Internet '99 (IWI'99). Industrial Applications on Network Computing (INDAP). Multime(ICPPW), Wakamatsu, Japan, 1999, pp. 179.
doi:10.1109/ICPPW.1999.800059
95 ms
(Ver 3.3 (11022016))