A state-transfer-based dynamic policy approach for constraints in RBAC

Authors:
Cheng Zang;Zhongdong Huang;Gang Chen;Jinxiang Dong
Affiliations:
College of Computer Science, Zhejiang Univ., Hangzhou, P.R.China;College of Computer Science, Zhejiang Univ., Hangzhou, P.R.China;College of Computer Science, Zhejiang Univ., Hangzhou, P.R.China;College of Computer Science, Zhejiang Univ., Hangzhou, P.R.China
Venue:
WAIM'05 Proceedings of the 6th international conference on Advances in Web-Age Information Management
Year:
2005

Citing 9
Cited 1

Role-Based Access Control Models

Computer
History-based access control for mobile code

CCS '98 Proceedings of the 5th ACM conference on Computer and communications security
TRBAC: A temporal role-based access control model

ACM Transactions on Information and System Security (TISSEC)
Temporal hierarchies and inheritance semantics for GTRBAC

SACMAT '02 Proceedings of the seventh ACM symposium on Access control models and technologies
An approach to engineer and enforce context constraints in an RBAC environment

Proceedings of the eighth ACM symposium on Access control models and technologies
A Model for Context-dependent Access Control for Web-based Services with Role-based Approach

DEXA '03 Proceedings of the 14th International Workshop on Database and Expert Systems Applications
A Trust-based Context-Aware Access Control Model for Web-Services

ICWS '04 Proceedings of the IEEE International Conference on Web Services
Designing an Agent-Based RBAC System for Dynamic Security Policy

WETICE '04 Proceedings of the 13th IEEE International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises
A Generalized Temporal Role-Based Access Control Model

IEEE Transactions on Knowledge and Data Engineering

An architecture approach to dynamic policy in RBAC

CSCWD'06 Proceedings of the 10th international conference on Computer supported cooperative work in design III

Quantified Score

Hi-index	0.00

Visualization

Abstract

RBAC is widely used in access control field, and this paper proposes an approach to implement dynamic policy transfer on this model. Our approach monitors state-transfers of subjects and transfers policies correspondingly. It holds a finite number of states and a policy transfer set containing the predefined policies. When a state-transfer occurs, an appropriate policy chosen from the policy transfer set will be applied to change the user-role mapping or the role-permission mapping from one to another. This policy transfer not only focuses on the current state, but also takes the previous state into consideration since changing from different state will lead to a different current policy.