Panel: which access control technique will provide the greatest overall benefit

Authors:
Timothy Fraser;David Ferraiolo;Mikel L. Matthews;Casey Schaufler;Stephen Smalley;Robert Watson
Affiliations:
NAI Labs.;National Institute of Standards and Technology;Argus Systems Group, Inc.;SGI;NAI Labs.;NAI Labs/ and the FreeBSD Project
Venue:
SACMAT '01 Proceedings of the sixth ACM symposium on Access control models and technologies
Year:
2001

Citing 18
Cited 0

Role-Based Access Control Models

Computer
Mutual exclusion of roles as a means of implementing separation of duty in role-based access control systems

RBAC '97 Proceedings of the second ACM workshop on Role-based access control
Formal specification for role based access control user/role and role/role relationship management

RBAC '98 Proceedings of the third ACM workshop on Role-based access control
The role graph model and conflict of interest

ACM Transactions on Information and System Security (TISSEC) - Special issue on role-based access control
A role-based access control model and reference implementation within a corporate intranet

ACM Transactions on Information and System Security (TISSEC) - Special issue on role-based access control
The ARBAC97 model for role-based administration of roles

ACM Transactions on Information and System Security (TISSEC) - Special issue on role-based access control
SecureFlow: a secure Web-enabled workflow management system

RBAC '99 Proceedings of the fourth ACM workshop on Role-based access control
TRBAC: a temporal role-based access control model

RBAC '00 Proceedings of the fifth ACM workshop on Role-based access control
Configuring role-based access control to enforce mandatory and discretionary access control policies

ACM Transactions on Information and System Security (TISSEC)
Role-based authorization constraints specification

ACM Transactions on Information and System Security (TISSEC)
Requirements, Capabilities, and Functionalities of User-Role Based Security for an Object-Oriented Design Model

Results of the IFIP WG 11.3 Workshop on Database Security V: Status and Prospects
Access Rights Administration in Role-Based Security Systems

Proceedings of the IFIP WG11.3 Working Conference on Database Security VII
Protection

ACM SIGOPS Operating Systems Review
A Formal Model for Role-Based Access Control with Constraints

CSFW '96 Proceedings of the 9th IEEE workshop on Computer Security Foundations
Using kernel hypervisors to secure applications

ACSAC '97 Proceedings of the 13th Annual Computer Security Applications Conference
The Typed Access Matrix Model

SP '92 Proceedings of the 1992 IEEE Symposium on Security and Privacy
The flask security architecture: system support for diverse security policies

SSYM'99 Proceedings of the 8th conference on USENIX Security Symposium - Volume 8
SLIC: an extensibility system for commodity operating systems

ATEC '98 Proceedings of the annual conference on USENIX Annual Technical Conference

Quantified Score

Hi-index	0.00

Visualization

Abstract

The question before the panel: Considering all factors (for example: quality of protection, performance, compatibility, ease of use), which operating system access control technique will provide the greatest overall benefit to users?