A flexible authorization mechanism for relational data management systems
ACM Transactions on Information Systems (TOIS)
TRBAC: A temporal role-based access control model
ACM Transactions on Information and System Security (TISSEC)
Role-Based Access Control
Rule-Based RBAC with Negative Authorization
ACSAC '04 Proceedings of the 20th Annual Computer Security Applications Conference
Hi-index | 0.00 |
In this paper we present a model that can prevent conflict situations caused by applying both positive and negative authorizations for access to a resource. Such conflict situations may occur if an organization has decentralized administration, and/or several collaborating organizations have access to one resource and some of them apply positive authorizations while others apply negative authorizations. The proposed solution involves Belnap's logic.