Representation and reasoning on role-based access control policies with conceptual graphs

Authors:
Romuald Thion;Stéphane Coulondre
Affiliations:
LIRIS: Lyon Research Center for Images and Intelligent Information Systems, Villeurbanne, France;LIRIS: Lyon Research Center for Images and Intelligent Information Systems, Villeurbanne, France
Venue:
ICCS'06 Proceedings of the 14th international conference on Conceptual Structures: inspiration and Application
Year:
2006

Citing 12
Cited 0

Conceptual structures: information processing in mind and machine

Conceptual structures: information processing in mind and machine
Role-Based Access Control Models

Computer
A graphical definition of authorization schema in the DTAC model

SACMAT '01 Proceedings of the sixth ACM symposium on Access control models and technologies
A logical framework for reasoning about access control models

ACM Transactions on Information and System Security (TISSEC)
Conceptual Graphs and First-Order Logic

ICCS '95 Proceedings of the Third International Conference on Conceptual Structures: Applications, Implementation and Theory
Sound and Complete Forward and backward Chainingd of Graph Rules

ICCS '96 Proceedings of the 4th International Conference on Conceptual Structures: Knowledge Representation as Interlingua
The ARBAC99 Model for Administration of Roles

ACSAC '99 Proceedings of the 15th Annual Computer Security Applications Conference
Role-Based Access Control

Role-Based Access Control
Flexible access control policy specification with constraint logic programming

ACM Transactions on Information and System Security (TISSEC)
A Generalized Temporal Role-Based Access Control Model

IEEE Transactions on Knowledge and Data Engineering
Extensions of simple conceptual graphs: the complexity of rules and constraints

Journal of Artificial Intelligence Research
Visual specifications of policies and their verification

FASE'03 Proceedings of the 6th international conference on Fundamental approaches to software engineering

Quantified Score

Hi-index	0.00

Visualization

Abstract

This paper focuses on two aspects of access control: graphical representation and reasoning. Access control policies describe which permissions are granted to users w.r.t. some resources. The Role-Based Access Control model introduces the concept of role to organize users' permissions. Currently, there is a need for tools allowing security officers to graphically describe and reason on role-based policies. Thanks to conceptual graphs we can provide a consistent graphical formalism for Role-Based Access Control policies, which is able to deal with specific features of this access control model such as role hierarchy and constraints. Moreover, once a policy is modeled by CGs, graph rules and inference procedures can be used to reason on it; This allows security officers to understand why some permissions are granted or not and to detect whether security constraints are violated.