Planning User Assignment in Administrative Role-Based Access Control

被引:0
|
作者
Huang, Wei [1 ]
Yang, Yang [2 ]
机构
[1] Wuhan Inst Technol, Sch Comp Sci & Engn, Wuhan 430073, Peoples R China
[2] Hubei Finance & Taxat Coll, Dept Informat Engn, Wuhan 430064, Peoples R China
来源
2009 ISECS INTERNATIONAL COLLOQUIUM ON COMPUTING, COMMUNICATION, CONTROL, AND MANAGEMENT, VOL IV | 2009年
关键词
user assignment problem; ARBAC; access control; exponential space complexity;
D O I
10.1109/CCCM.2009.5267501
中图分类号
TP39 [计算机的应用];
学科分类号
081203 ; 0835 ;
摘要
By introducing prerequisite conditions into the User-Role Assignment component (URA), Administrative Role-Based Access Control model (ARBAC) has decentralized the user-role assignment without losing the centralized control on security policies. However, in a large-scale Role-Based Access Control (RBAC) system, employing the URA makes it very difficult to manually obtain a sequence of the administrative operators by which a given user can be assigned to a given role. We refer to this problem as the User Assignment Problem (UAP). We formalized the UAP and recognized the UAP as an exponential space complexity problem. We also presented a graph-based search technology to solve the UAP, which was shown to be practically feasible in large-scaled RBAC systems.
引用
收藏
页码:615 / +
页数:2
相关论文
共 50 条
  • [1] Trust-based user-role assignment in role-based access control
    Takabi, Hassan
    Amini, Morteza
    Jalili, Rasool
    [J]. 2007 IEEE/ACS INTERNATIONAL CONFERENCE ON COMPUTER SYSTEMS AND APPLICATIONS, VOLS 1 AND 2, 2007, : 807 - +
  • [2] Policy analysis for Administrative Role-Based Access Control
    Sasturkar, Amit
    Yang, Ping
    Stoller, Scott D.
    Ramakrishnan, C. R.
    [J]. THEORETICAL COMPUTER SCIENCE, 2011, 412 (44) : 6208 - 6234
  • [3] VAC - Verifier of Administrative Role-Based Access Control Policies
    Ferrara, Anna Lisa
    Madhusudan, P.
    Nguyen, Truc L.
    Parlato, Gennaro
    [J]. COMPUTER AIDED VERIFICATION, CAV 2014, 2014, 8559 : 184 - 191
  • [4] AMTRAC: An administrative model for temporal role-based access control
    Sharma, Manisha
    Sural, Shamik
    Vaidya, Jaideep
    Atluri, Vijayalakshmi
    [J]. COMPUTERS & SECURITY, 2013, 39 : 201 - 218
  • [5] Permission and role automatic assigning of user in role-based access control
    韩道军
    卓汉逵
    夏兰亭
    李磊
    [J]. Journal of Central South University, 2012, 19 (04) : 1049 - 1056
  • [6] Permission and role automatic assigning of user in role-based access control
    Dao-jun Han
    Han-kui Zhuo
    Lan-ting Xia
    Lei Li
    [J]. Journal of Central South University, 2012, 19 : 1049 - 1056
  • [7] Permission and role automatic assigning of user in role-based access control
    Han Dao-jun
    Zhuo Han-kui
    Xia Lan-ting
    Li Lei
    [J]. JOURNAL OF CENTRAL SOUTH UNIVERSITY, 2012, 19 (04) : 1049 - 1056
  • [8] An Administrative Model for Role-Based Access Control Using Hierarchical Namespace
    Xia, Luning
    Jing, Jiwu
    [J]. PACIFIC ASIA CONFERENCE ON INFORMATION SYSTEMS 2006, SECTIONS 1-8, 2006, : 181 - 188
  • [9] Symbolic reachability analysis for parameterized administrative role-based access control
    Stoller, Scott D.
    Yang, Ping
    Gofman, Mikhail I.
    Ramakrishnan, C. R.
    [J]. COMPUTERS & SECURITY, 2011, 30 (2-3) : 148 - 164
  • [10] Edge-RMP: Minimizing administrative assignments for role-based access control
    Vaidya, Jaideep
    Atluri, Vijayalakshmi
    Guo, Qi
    Lu, Haibing
    [J]. JOURNAL OF COMPUTER SECURITY, 2009, 17 (02) : 211 - 235
12345