Management advantages of object classification in role-based access control (RBAC)

Authors:
Mohammad Jafari;Mohammad Fathian
Affiliations:
Department of Information Technology, Faculty of Industrial Engineering, University of Science and Technology, Narmak, Tehran, Iran;Department of Information Technology, Faculty of Industrial Engineering, University of Science and Technology, Narmak, Tehran, Iran
Venue:
ASIAN'07 Proceedings of the 12th Asian computing science conference on Advances in computer science: computer and network security
Year:
2007

Citing 14
Cited 0

Role-Based Access Control Models

Computer
Team-based access control (TMAC): a primitive for applying role-based access controls in collaborative environments

RBAC '97 Proceedings of the second ACM workshop on Role-based access control
Role templates for content-based access control

RBAC '97 Proceedings of the second ACM workshop on Role-based access control
Towards a more complete model of role

RBAC '98 Proceedings of the third ACM workshop on Role-based access control
A role-based access control model and reference implementation within a corporate intranet

ACM Transactions on Information and System Security (TISSEC) - Special issue on role-based access control
Process-oriented approach for role-finding to implement role-based security administration in a large industrial organization

RBAC '00 Proceedings of the fifth ACM workshop on Role-based access control
Design and implementation of an access control processor for XML documents

Proceedings of the 9th international World Wide Web conference on Computer networks : the international journal of computer and telecommunications netowrking
Configuring role-based access control to enforce mandatory and discretionary access control policies

ACM Transactions on Information and System Security (TISSEC)
The role-based access control system of a European bank: a case study and discussion

SACMAT '01 Proceedings of the sixth ACM symposium on Access control models and technologies
Proposed NIST standard for role-based access control

ACM Transactions on Information and System Security (TISSEC)
A fine-grained access control system for XML documents

ACM Transactions on Information and System Security (TISSEC)
Context sensitivity in role-based access control

ACM SIGOPS Operating Systems Review
Induced role hierarchies with attribute-based RBAC

Proceedings of the eighth ACM symposium on Access control models and technologies
Role-Based Access Control

Role-Based Access Control

Quantified Score

Hi-index	0.00

Visualization

Abstract

This paper investigates the advantages of enabling object classification in role-based access control (RBAC). First, it is shown how the merits of the RBAC models can be ascribed to its using of abstraction and state of dependencies. Following same arguments, it is shown how inclusion of object classification will ameliorate dependencies and abstractions in the model. The discussion contains examining seven criteria to compare object-classification-enabled RBAC with plain RBAC and trivial-permission-assignment models, in order to show the advantages of object classification in a more formal manner. The criteria are: number and complexity of decisions, change management cost, risk of errors, policy portability and reuse, enforcement and compliance, support for traditional information classification policies, and object grouping and management support.