Abstract
Since its formalization RBAC has become the yardstick for the evaluation of access control formalisms. In order to meet organizational needs, it has been extended along several directions: delegation, separation of duty, history-based access control, etc. We propose in this paper an access control language in which RBAC and all the above-listed extensions can be encoded. In contrast with Cassandra, we have not promoted role management mechanism to first-class citizenship, and have based our model on the assumption that access control systems could be separated into a dynamic part that evolves according to actions performed by users and a static part. We solve in this paper decision problems related to access control for policies expressed in this language. © Springer-Verlag Berlin Heidelberg 2008.
Author supplied keywords
Cite
CITATION STYLE
Balbiani, P., Chevalier, Y., & El Houri, M. (2008). A logical approach to dynamic role-based access control. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 5253 LNAI, pp. 194–208). https://doi.org/10.1007/978-3-540-85776-1_17
Register to see more suggestions
Mendeley helps you to discover research relevant for your work.
