ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
Role activation hierarchies
Full text PdfPdf (814 KB)
Source Symposium on Access Control Models and Technologies archive
Proceedings of the third ACM workshop on Role-based access control table of contents
Fairfax, Virginia, United States
Pages: 33 - 40  
Year of Publication: 1998
ISBN:1-58113-113-5
Author
Ravi Sandhu  Laboratory for Information Security Technology and Information and Software Engineering Department, George Mason University
Sponsors
SIGSAC: ACM Special Interest Group on Security, Audit, and Control
ACM Wash. DC Chap. : ACM Washington DC Chapter
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 13,   Downloads (12 Months): 52,   Citation Count: 36
Additional Information:

references   cited by   index terms   collaborative colleagues  

Tools and Actions: Request Permissions Request Permissions    Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/286884.286891
What is a DOI?

REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
Bel87
D.E. Bell. Secure computer systems: A network interpretation. In Proceedings of 3rd Annual Computer Security Application Conference, pages 32-39, 1987.
 
BL75
D.E. Bell and L.J. LaPadula. Secure computer systems: Unified exposition and Multics interpretation. Technical Report ESD- TR-75-306, The Mitre Corporation, Bedford, MA, March 1975.
 
Bry97
Ciaran Bryce, Security Engineering of Lattice-Based Policies, Proceedings of the 10th Computer Security Foundations Workshop (CSFW '97), p.195, June 10-12, 1997
FB97
David Ferraiolo , John Barkley, Specifying and managing role-based access control within a corporate intranet, Proceedings of the second ACM workshop on Role-based access control, p.77-82, November 06-07, 1997, Fairfax, Virginia, United States  [doi>10.1145/266741.266761]
 
FCK95
David Ferraiolo, .Janet Cugini, and Richard Kuhn. Role-based access control (RBAC): Features and motivations. In Proceedings of 11tit Annual Computer Security Application Conference, pages 241-48, New Orleans, LA, December 11-15 1995.
 
Fol92
Simon Foley. Aggregation and separation as non-interference properties. The Journal Of Computer Security, 1(2):159--188, 1992.
 
Gui95
Luigi Guiri. A new model for role-based ac- ('ess control. In Proceedings of 11th Annual Computer Security Application Conference, pages 249-255, New Orleans, LA, December 11-15 1995.
Gui97
Luigi Giuri, Role-based access control: a natural approach, Proceedings of the first ACM Workshop on Role-based access control, p.13-es, November 30-December 02, 1995, Gaithersburg, Maryland, United States  [doi>10.1145/270152.270176]
Kuh97
D. Richard Kuhn, Mutual exclusion of roles as a means of implementing separation of duty in role-based access control systems, Proceedings of the second ACM workshop on Role-based access control, p.23-30, November 06-07, 1997, Fairfax, Virginia, United States  [doi>10.1145/266741.266749]
 
NO96
Matunda Nyanchama , Sylvia Osborn, Modeling mandatory access control in role-based security systems, Proceedings of the ninth annual IFIP TC11 WG11.3 working conference on Database security IX : status and prospects: status and prospects, p.129-144, January 1996, Rennselaerville, New York, United States
 
San93
Ravi S. Sandhu, Lattice-Based Access Control Models, Computer, v.26 n.11, p.9-19, November 1993  [doi>10.1109/2.241422]
 
San96
Ravi S. Sandhu, Role Hierarchies and Constraints for Lattice-Based Access Controls, Proceedings of the 4th European Symposium on Research in Computer Security: Computer Security, p.65-79, September 25-27, 1996
San97
Ravi Sandhu, Rationale for the RBAC96 family of access control models, Proceedings of the first ACM Workshop on Role-based access control, p.9-es, November 30-December 02, 1995, Gaithersburg, Maryland, United States  [doi>10.1145/270152.270167]
 
SCFY96
Ravi S. Sandhu , Edward J. Coyne , Hal L. Feinstein , Charles E. Youman, Role-Based Access Control Models, Computer, v.29 n.2, p.38-47, February 1996  [doi>10.1109/2.485845]
 
SZ97
Richard Simon , Mary Ellen Zurko, Separation of Duty in Role-based Environments, Proceedings of the 10th Computer Security Foundations Workshop (CSFW '97), p.183, June 10-12, 1997

CITED BY  36
Ravi Sandhu , David Ferraiolo , Richard Kuhn, The NIST model for role-based access control: towards a unified standard, Proceedings of the fifth ACM workshop on Role-based access control, p.47-63, July 26-28, 2000, Berlin, Germany
David F. Ferraiolo , John F. Barkley , D. Richard Kuhn, A role-based access control model and reference implementation within a corporate intranet, ACM Transactions on Information and System Security (TISSEC), v.2 n.1, p.34-64, Feb. 1999
Hua Wang , Yanchun Zhang , Jinli Cao, Formal authorisation allocation approaches for permission-role assignments using relational algebra operations, Proceedings of the fourteenth Australasian database conference, p.125-133, February 01, 2003, Adelaide, Australia
James B D Joshi , Elisa Bertino , Arif Ghafoor, Temporal hierarchies and inheritance semantics for GTRBAC, Proceedings of the seventh ACM symposium on Access control models and technologies, June 03-04, 2002, Monterey, California, USA
Serban I. Gavrila , John F. Barkley, Formal specification for role based access control user/role and role/role relationship management, Proceedings of the third ACM workshop on Role-based access control, p.81-90, October 22-23, 1998, Fairfax, Virginia, United States
Trent Jaeger , Atul Prakash , Jochen Liedtke , Nayeem Islam, Flexible control of downloaded executable content, ACM Transactions on Information and System Security (TISSEC), v.2 n.2, p.177-228, May 1999
Jean Bacon , Ken Moody , Walt Yao, Access control and trust in the use of widely distributed services, Software—Practice & Experience, v.33 n.4, p.375-394, 10 April 2003
David F. Ferraiolo , Ravi Sandhu , Serban Gavrila , D. Richard Kuhn , Ramaswamy Chandramouli, Proposed NIST standard for role-based access control, ACM Transactions on Information and System Security (TISSEC), v.4 n.3, p.224-274, August 2001
Haio Roeckle , Gerhard Schimpf , Rupert Weidinger, Process-oriented approach for role-finding to implement role-based security administration in a large industrial organization, Proceedings of the fifth ACM workshop on Role-based access control, p.103-110, July 26-28, 2000, Berlin, Germany
Jürgen Schlegelmilch , Ulrike Steffens, Role mining with ORCA, Proceedings of the tenth ACM symposium on Access control models and technologies, June 01-03, 2005, Stockholm, Sweden
Ravi Sandhu, Engineering authority and trust in cyberspace: the OM-AM and RBAC way, Proceedings of the fifth ACM workshop on Role-based access control, p.111-119, July 26-28, 2000, Berlin, Germany
Hua Wang , Jinli Cao , Yanchun Zhang, A flexible payment scheme and its permission-role assignment, Proceedings of the twenty-sixth Australasian conference on Computer science: research and practice in information technology, p.189-198, February 01, 2003, Adelaide, Australia
Sejong Oh , Seog Park, Task-role-based access control model, Information Systems, v.28 n.6, p.533-562, September 2003
Basit Shafiq , James B. D. Joshi , Elisa Bertino , Arif Ghafoor, Secure Interoperation in a Multidomain Environment Employing RBAC Policies, IEEE Transactions on Knowledge and Data Engineering, v.17 n.11, p.1557-1577, November 2005
Walt Yao , Ken Moody , Jean Bacon, A model of OASIS role-based access control and its support for active security, Proceedings of the sixth ACM symposium on Access control models and technologies, p.171-181, May 2001, Chantilly, Virginia, United States
Hua Wang , Jinli Cao , Yanchun Zhang, A Flexible Payment Scheme and Its Role-Based Access Control, IEEE Transactions on Knowledge and Data Engineering, v.17 n.3, p.425-436, March 2005
James B. D. Joshi , Elisa Bertino , Usman Latif , Arif Ghafoor, A Generalized Temporal Role-Based Access Control Model, IEEE Transactions on Knowledge and Data Engineering, v.17 n.1, p.4-23, January 2005
Hua Wang , Lili Sun , Yanchun Zhang , Jinli Cao, Authorization algorithms for the mobility of user-role relationship, Proceedings of the Twenty-eighth Australasian conference on Computer Science, p.69-77, January 01, 2005, Newcastle, Australia
Jason Crampton, Understanding and developing role-based administrative models, Proceedings of the 12th ACM conference on Computer and communications security, November 07-11, 2005, Alexandria, VA, USA
Rafae Bhatti , Basit Shafiq , Elisa Bertino , Arif Ghafoor , James B. D. Joshi, X-gtrbac admin: A decentralized administration model for enterprise-wide access control, ACM Transactions on Information and System Security (TISSEC), v.8 n.4, p.388-423, November 2005
James B. D. Joshi , Elisa Bertino , Arif Ghafoor, An Analysis of Expressiveness and Design Issues for the Generalized Temporal Role-Based Access Control Model, IEEE Transactions on Dependable and Secure Computing, v.2 n.2, p.157-175, April 2005
Hua Wang , Yanchun Zhang , Jinli Cao, Ubiquitous computing environments and its usage access control, Proceedings of the 1st international conference on Scalable information systems, p.6-es, May 30-June 01, 2006, Hong Kong
Hua Wang , Jiuyong Li , Ron Addie , Stijn Dekeyser , Richard Watson, A framework for role-based group deligation in distributed environments, Proceedings of the 29th Australasian Computer Science Conference, p.321-328, January 16-19, 2006, Hobart, Australia
Liang Chen , Jason Crampton, On spatio-temporal constraints and inheritance in role-based access control, Proceedings of the 2008 ACM symposium on Information, computer and communications security, March 18-20, 2008, Tokyo, Japan
James B. D. Joshi , Elisa Bertino, Fine-grained role-based delegation in presence of the hybrid role hierarchy, Proceedings of the eleventh ACM symposium on Access control models and technologies, June 07-09, 2006, Lake Tahoe, California, USA
Jon A. Solworth, Approvability, Proceedings of the 2006 ACM Symposium on Information, computer and communications security, March 21-24, 2006, Taipei, Taiwan
Liang Chen , Jason Crampton, Inter-domain role mapping and least privilege, Proceedings of the 12th ACM symposium on Access control models and technologies, June 20-22, 2007, Sophia Antipolis, France
Jan Peters , Roland Rieke , Taufiq Rochaeli , Björn Steinemann , Ruben Wolf, A Holistic Approach to Security Policies -- Policy Distribution with XACML over COPS, Electronic Notes in Theoretical Computer Science (ENTCS), 168, p.143-157, February, 2007
Quan Pham , Jason Reid , Adrian McCullagh , Ed Dawson, Commitment issues in delegation process, Proceedings of the sixth Australasian conference on Information security, January 01-01, 2008, Wollongong, NSW, Australia
Yue Zhang , James B. D. Joshi, UAQ: a framework for user authorization query processing in RBAC extended with hybrid hierarchy and constraints, Proceedings of the 13th ACM symposium on Access control models and technologies, June 11-13, 2008, Estes Park, CO, USA
James B. D. Joshi , Elisa Bertino , Arif Ghafoor , Yue Zhang, Formal foundations for hybrid hierarchies in GTRBAC, ACM Transactions on Information and System Security (TISSEC), v.10 n.4, p.1-39, January 2008
Sylvia Encheva , Sharil Tumin, Preventing conflict situations during authorization, WSEAS Transactions on Computers, v.7 n.4, p.265-272, April 2008
Ninghui Li , Ji-Won Byun , Elisa Bertino, A Critique of the ANSI Standard on Role-Based Access Control, IEEE Security and Privacy, v.5 n.6, p.41-49, November 2007
Hua Wang , Yanchun Zhang , Jinli Cao, Access control management for ubiquitous computing, Future Generation Computer Systems, v.24 n.8, p.870-878, October, 2008
Jean Bacon , Ken Moody , Walt Yao, Access Control and Trust in the Use of Widely Distributed Services, Proceedings of the IFIP/ACM International Conference on Distributed Systems Platforms Heidelberg, p.295-310, November 12-16, 2001
Hua Wang , Jinli Cao , Yanchun Zhang, Delegating revocations and authorizations in collaborative business environments, Information Systems Frontiers, v.11 n.3, p.293-305, July 2009

INDEX TERMS

Primary Classification:
  K. Computing Milieux
  K.6 MANAGEMENT OF COMPUTING AND INFORMATION SYSTEMS
      K.6.5 Security and Protection (D.4.6, K.4.2)
          Subjects: Authentication

Additional Classification:
  G. Mathematics of Computing
  G.2 DISCRETE MATHEMATICS

  I. Computing Methodologies
  I.6 SIMULATION AND MODELING


General Terms:
Algorithms, Human Factors, Management, Security

Collaborative Colleagues:
Ravi Sandhu: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player