Using π-calculus to formalize domain administration of RBAC

Authors:
Yahui Lu;Li Zhang;Yinbo Liu;Jiaguang Sun
Affiliations:
,School of Software, Tsinghua University, Beijing, China;School of Software, Tsinghua University, Beijing, China;,School of Software, Tsinghua University, Beijing, China;,School of Software, Tsinghua University, Beijing, China
Venue:
ISPEC'06 Proceedings of the Second international conference on Information Security Practice and Experience
Year:
2006

Citing 12
Cited 0

Role-Based Access Control Models

Computer
A calculus for cryptographic protocols: the spi calculus

Proceedings of the 4th ACM conference on Computer and communications security
The ARBAC97 model for role-based administration of roles

ACM Transactions on Information and System Security (TISSEC) - Special issue on role-based access control
Proposed NIST standard for role-based access control

ACM Transactions on Information and System Security (TISSEC)
A model for role administration using organization structure

SACMAT '02 Proceedings of the seventh ACM symposium on Access control models and technologies
A graph-based formalism for RBAC

ACM Transactions on Information and System Security (TISSEC)
PI-Calculus: A Theory of Mobile Processes

PI-Calculus: A Theory of Mobile Processes
Information flow vs. resource access in the asynchronous pi-calculus

ACM Transactions on Programming Languages and Systems (TOPLAS)
A pi-calculus Model of a Spanish Fish Market - Preliminary Report

AMET '98 Selected Papers from the First International Workshop on Agent Mediated Electronic Trading on Agent Mediated Electronic Commerce
Administrative scope: A foundation for role-based administrative models

ACM Transactions on Information and System Security (TISSEC)
Administrative scope in the graph-based framework

Proceedings of the ninth ACM symposium on Access control models and technologies
Modular authorization and administration

ACM Transactions on Information and System Security (TISSEC)

Quantified Score

Hi-index	0.00

Visualization

Abstract

With the wide implementations of Role-based access control (RBAC) models in the information systems, the access control for RBAC itself, administration of RBAC, becomes more and more important. In this paper, we propose a Domain Administration of RBAC Model, DARBAC, which defines an administrative domain for each administrative role. The administrative role can execute administrative operations on the users, roles, objects and child administrative roles within its administrative domain. Then we use π-calculus to formalize the elements of DARBAC model and their interactions. Although π-calculus has been successfully used in many security areas such as protocol analysis and information flow analysis, as we have known, our approach is the first attempt to use π-calculus to formalize RBAC and its administrative model.