Fuzzy Role-Based Access Control

Authors:
Carles Martínez-García;Guillermo Navarro-Arribas;Joan Borrell
Affiliations:
Department of Information and Communications Engineering (dEIC), Universitat Autònoma de Barcelona, 08193 Bellaterra, Spain;IIIA, Institut dInvestigació en Intel.ligència Artificial - CSIC, Consejo Superior de Investigaciones Científicas, Campus UAB s/n, 08193 Bellaterra, Spain;Department of Information and Communications Engineering (dEIC), Universitat Autònoma de Barcelona, 08193 Bellaterra, Spain
Venue:
Information Processing Letters
Year:
2011

Citing 12
Cited 2

Fuzzy sets and fuzzy logic: theory and applications

Fuzzy sets and fuzzy logic: theory and applications
Proposed NIST standard for role-based access control

ACM Transactions on Information and System Security (TISSEC)
A Trust based Access Control Framework for P2P File-Sharing Systems

HICSS '05 Proceedings of the Proceedings of the 38th Annual Hawaii International Conference on System Sciences - Volume 09
Role-Based Access Control, Second Edition

Role-Based Access Control, Second Edition
Fuzzy Multi-Level Security: An Experiment on Quantified Risk-Adaptive Access Control

SP '07 Proceedings of the 2007 IEEE Symposium on Security and Privacy
Enhancing Role-Based Access Control Model through Fuzzy Relations

IAS '07 Proceedings of the Third International Symposium on Information Assurance and Security
A Critique of the ANSI Standard on Role-Based Access Control

IEEE Security and Privacy
Reducing inference control to access control for normalized database schemas

Information Processing Letters
Study on Fuzzy Theory Based Web Access Control Model

ISIP '08 Proceedings of the 2008 International Symposiums on Information Processing
Trust-Based Fuzzy Access Control Model Research

WISM '09 Proceedings of the International Conference on Web Information Systems and Mining
Keeping secrets in possibilistic knowledge bases with necessity-valued privacy policies

IPMU'10 Proceedings of the Computational intelligence for knowledge-based systems design, and 13th international conference on Information processing and management of uncertainty
TrustAC: trust-based access control for pervasive devices

SPC'05 Proceedings of the Second international conference on Security in Pervasive Computing

Intra-role progression in RBAC: an RPG-Like access control scheme

DPM'11 Proceedings of the 6th international conference, and 4th international conference on Data Privacy Management and Autonomous Spontaneus Security
Role-facing modelling and analysis of workflow based on supply and demand network with multi-function and opening characteristics

International Journal of Electronic Finance

Quantified Score

Hi-index	0.90

Visualization

Abstract

RBAC (Role-Based Access Control) is a widely used access control model, which reduces the maintenance cost of classical identity-based access control. However, despite the benefits of RBAC, there are environments in which RBAC can hardly be applied. We present FRBAC (Fuzzy Role-Based Access Control), a generalization of RBAC through fuzzy relations that extends the applicability of RBAC to environments where authorization-related information is vague. Moreover, FRBAC deals with environments where the actions that can be executed over the resources have a fractional meaning, as data lying in databases and risk-based access control.