Delegation in the role graph model

Authors:
He Wang;Sylvia L. Osborn
Affiliations:
The University of Western Ontario, London, ON, Canada;The University of Western Ontario, London, ON, Canada
Venue:
Proceedings of the eleventh ACM symposium on Access control models and technologies
Year:
2006

Citing 15
Cited 6

The role graph model and conflict of interest

ACM Transactions on Information and System Security (TISSEC) - Special issue on role-based access control
An authorization mechanism for a relational database system

ACM Transactions on Database Systems (TODS)
Modeling users in role-based access control

RBAC '00 Proceedings of the fifth ACM workshop on Role-based access control
A rule-based framework for role based delegation

SACMAT '01 Proceedings of the sixth ACM symposium on Access control models and technologies
A role-based delegation framework for healthcare information systems

SACMAT '02 Proceedings of the seventh ACM symposium on Access control models and technologies
Access Rights Administration in Role-Based Security Systems

Proceedings of the IFIP WG11.3 Working Conference on Database Security VII
PBDM: a flexible delegation model in RBAC

Proceedings of the eighth ACM symposium on Access control models and technologies
Framework for role-based delegation models

ACSAC '00 Proceedings of the 16th Annual Computer Security Applications Conference
A rule-based framework for role-based delegation and revocation

ACM Transactions on Information and System Security (TISSEC)
Secure Information Sharing Using Role-based Delegation

ITCC '04 Proceedings of the International Conference on Information Technology: Coding and Computing (ITCC'04) Volume 2 - Volume 2
Role-Based Delegation Model/ Hierarchical Roles (RBDM1)

ACSAC '04 Proceedings of the 20th Annual Computer Security Applications Conference
Access control in collaborative systems

ACM Computing Surveys (CSUR)
Supporting conditional delegation in secure workflow management systems

Proceedings of the tenth ACM symposium on Access control models and technologies
A fine-grained, controllable, user-to-user delegation method in RBAC

Proceedings of the tenth ACM symposium on Access control models and technologies
An authorization framework based on constrained delegation

ISPA'04 Proceedings of the Second international conference on Parallel and Distributed Processing and Applications

Managing RBAC states with transitive relations

ASIACCS '07 Proceedings of the 2nd ACM symposium on Information, computer and communications security
Discretionary access control with the administrative role graph model

Proceedings of the 12th ACM symposium on Access control models and technologies
Commitment issues in delegation process

AISC '08 Proceedings of the sixth Australasian conference on Information security - Volume 81
A model for constraint and delegation management

ISPEC'11 Proceedings of the 7th international conference on Information security practice and experience
A new approach for delegation in usage control

Proceedings of the third ACM conference on Data and application security and privacy
Taking value-networks to the cloud services: security services, semantics and service level agreements

Information Systems and e-Business Management

Quantified Score

Hi-index	0.00

Visualization

Abstract

We present a model for delegation that is based on our decentralized administrative role graph model. We use a combination of user/group assignment and user-role assignment to support user to user,permission to user and role to role delegation. A powerful source-dependent revocation algorithm is described. We separate our delegation model into static and dynamic models, then discuss the static model and its operations. We provide detailed partial revocation algorithms. We also give details concerning changes to the role hierarchy, user/group structure and RBAC operations that are affected by delegation.