Analysis of TRBAC with dynamic temporal role hierarchies

Authors:
Emre Uzun;Vijayalakshmi Atluri;Jaideep Vaidya;Shamik Sural
Affiliations:
MSIS Department, Rutgers Business School;National Science Foundation and MSIS Department, Rutgers Business School;MSIS Department, Rutgers Business School;School of Information Technology, IIT Kharagpur, India
Venue:
DBSec'13 Proceedings of the 27th international conference on Data and Applications Security and Privacy XXVII
Year:
2013

Citing 11
Cited 0

Role-Based Access Control Models

Computer
The ARBAC97 model for role-based administration of roles: preliminary description and outline

RBAC '97 Proceedings of the second ACM workshop on Role-based access control
TRBAC: A temporal role-based access control model

ACM Transactions on Information and System Security (TISSEC)
Hybrid Role Hierarchy for Generalized Temporal Role Based Access Control Model

COMPSAC '02 Proceedings of the 26th International Computer Software and Applications Conference on Prolonging Software Life: Development and Redevelopment
PBDM: a flexible delegation model in RBAC

Proceedings of the eighth ACM symposium on Access control models and technologies
A rule-based framework for role-based delegation and revocation

ACM Transactions on Information and System Security (TISSEC)
A Generalized Temporal Role-Based Access Control Model

IEEE Transactions on Knowledge and Data Engineering
Fine-grained role-based delegation in presence of the hybrid role hierarchy

Proceedings of the eleventh ACM symposium on Access control models and technologies
The Role Hierarchy Mining Problem: Discovery of Optimal Role Hierarchies

ACSAC '08 Proceedings of the 2008 Annual Computer Security Applications Conference
Delegation in role-based access control

ESORICS'06 Proceedings of the 11th European conference on Research in Computer Security
Analyzing temporal role based access control models

Proceedings of the 17th ACM symposium on Access Control Models and Technologies

Quantified Score

Hi-index	0.00

Visualization

Abstract

The temporal role based access control (TRBAC) models support the notion of temporal roles, user-to-role and permission-to-role assignment, as well as allow role enabling. In this paper, we argue that role hierarchies can be temporal in nature with a dynamism that allows it to have a different structure in different time intervals; and safety analysis of such extensions is crucial. Towards this end, we propose the temporal role based access control model extended with dynamic temporal role hierarchies, denoted as TRBACRH, and offer an approach to perform its safety analysis. We also present an administrative model to govern changes to the proposed role hierarchy.