SECURITY SEMINAR SERIES
| Title: |
Administrative Scope: a foundation for role-based administrative models |
| Speaker: |
Jason Crampton, University of London, Royal Holloway |
| Date: |
Tuesday, 4 February 2003, 16:15 |
| Place: |
Lecture Theatre 2, William
Gates Building |
Abstract:
The basic components of role-based access control are
well understood and widely accepted. The use of RBAC principles to
manage RBAC systems has been less widely studied although some
advances have been made. In particular, the ARBAC97 model makes an important contribution to the
understanding and modeling of administration in role-based access
control. However, there are several features of the model which we
believe could be improved. We introduce the concept of administrative
scope in a role hierarchy and show how this can be used to control
updates to the hierarchy. We then incrementally develop a model for
administering the role hierarchy and compare it to the RRA97 sub-model
of ARBAC97. We conclude that our model offers significant advantages
over RRA97.
paper
|
