RBAC with Generic Rights, Delegation, Revocation, and Constraints

View Sample PDF

Author(s): Jacques Wainer (University of Campinas, Brazil), Fabio Negrello (University of Campinas, Brazil)and Igor Ribeiro de Assis (University of Campinas, Brazil)
Copyright: 2013
Pages: 22
Source title: IT Policy and Ethics: Concepts, Methodologies, Tools, and Applications
Source Author(s)/Editor(s): Information Resources Management Association (USA)
DOI: 10.4018/978-1-4666-2919-6.ch049

Keywords: Computer Science & IT / Engineering Science Reference / IT Policy & Standardization / IT Policy and Standardization

Purchase

View RBAC with Generic Rights, Delegation, Revocation, and Constraints on the publisher's website for pricing and purchasing information.

Abstract

This chapter presents R+DRC, an extension of the Role-based Access Control (RBAC) model. R+DRC allow for defining constraints, for example to enforce different forms of separation of duties, and the right of overriding a constraint. The model also defines delegations, and two forms of revocations. The model is discussed within the framework of modeling the access control of an hospital. Algorithms are provided for the more complex actions.

The IRMA Community

Research IRM

RBAC with Generic Rights, Delegation, Revocation, and Constraints

Purchase

Abstract

Related Content

IRMA Sponsors