Extending a Role Graph for Role-Based Access Control
スポンサーリンク
概要
- 論文の詳細を見る
Role-based access control (RBAC) is widely used as an access control mechanism in various computer systems. Since an organizations lines of authority influence the authorized privileges of jobs, roles also form a hierarchical structure. A role graph is a model that represents role hierarchies and is suitable for the runtime phase of RBAC deployment. Since a role graph cannot take various forms for given roles and cannot handle abstraction of roles well, however, it is not suitable for the design phase of RBAC deployment. Hence, an extended role graph, which can take a more flexible form than that of a role graph, is proposed. The extended role graph improves diversity and clarifies abstraction of roles, making it suitable for the design phase. An equivalent transformation algorithm (ETA), for transforming an extended role graph into an equivalent role graph, is also proposed. Using the ETA, system administrators can deploy efficiently RBAC by using an extended role graph in the design phase and a standard role graph in the runtime phase.
- 2009-02-01
著者
-
ASAKURA Yoshiharu
System Platforms Research Laboratories, NEC Corporation
-
Nakamoto Yukikazu
Graduate School Of Applied Informatics University Of Hyogo
-
Asakura Yoshiharu
System Platforms Research Laboratories Nec Corporation
関連論文
- Extending a Role Graph for Role-Based Access Control
- Extending a Role Graph for Role-Based Access Control
- Adaptive Fair Resource Allocation for Energy and QoS Trade-Off Management
- Sensor Scheduling Algorithms for Extending Battery Life in a Sensor Node