ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
The NIST model for role-based access control: towards a unified standard
Full text PdfPdf (1.04 MB)
Source Symposium on Access Control Models and Technologies archive
Proceedings of the fifth ACM workshop on Role-based access control table of contents
Berlin, Germany
Pages: 47 - 63  
Year of Publication: 2000
ISBN:1-58113-259-X
Authors
Ravi Sandhu  Laboratory for Information Security Technology (LIST), George Mason Univ.
David Ferraiolo  Information Technology Lab., National Institute of Standards and Technology (NIST)
Richard Kuhn  Information Technology Lab., National Institute of Standards and Technology (NIST)
Sponsor
SIGSAC: ACM Special Interest Group on Security, Audit, and Control
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 8,   Downloads (12 Months): 87,   Citation Count: 74
Additional Information:

abstract   references   cited by   index terms   collaborative colleagues  

Tools and Actions: Request Permissions Request Permissions    Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/344287.344301
What is a DOI?

ABSTRACT

This paper describes a unified model for role-based access control (RBAC). RBAC is a proven technology for large-scale authorization. However, lack of a standard model results in uncertainty and confusion about its utility and meaning. The NIST model seeks to resolve this situation by unifying ideas from prior RBAC models, commercial products and research prototypes. It is intended to serve as a foundation for developing future standards. RBAC is a rich and open-ended technology which is evolving as users, researchers and vendors gain experience with it. The NIST model focuses on those aspects of RBAC for which consensus is available. It is organized into four levels of increasing functional capabilities called flat RBAC, hierarchical RBAC, constrained RBAC and symmetric RBAC. These levels are cumulative and each adds exactly one new requirement. An alternate approach comprising flat and hierarchical RBAC in an ordered sequence and two unordered features—constraints and symmetry—is also presented. The paper furthermore identifies important attributes of RBAC not included in the NIST model. Some are not suitable for inclusion in a consensus document. Others require further work and agreement before standardization is feasible.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

AS99
Gail-Joon Ahn , Ravi Sandhu, The RSL99 language for role-based separation of duty constraints, Proceedings of the fourth ACM workshop on Role-based access control, p.43-54, October 28-29, 1999, Fairfax, Virginia, United States  [doi>10.1145/319171.319176]
 
CW87
D.D. Clark and D.R. Wilson. A comparison of commercial and military computer security policies. In Proceedings os IEEE Symposium on Security and Privacy, pages 184-194, Oakland, CA, May 1987.
FBK99
David F. Ferraiolo , John F. Barkley , D. Richard Kuhn, A role-based access control model and reference implementation within a corporate intranet, ACM Transactions on Information and System Security (TISSEC), v.2 n.1, p.34-64, Feb. 1999  [doi>10.1145/300830.300834]
 
FCK95
David Ferraiolo, Janet Cugini, and Richard Kuhn. Role-based access control (RBAC): Features and motivations. In Proceedings of 11th Annual Computer Security Application Conference, pages 241-48, New Orleans, LA, December 11- 15 1995.
 
FK92
David Ferraiolo and Richard Kuhn. Role-based access controls. In Proceedings of 15th NIST-NCSC National Computer Security Conference, pages 554-563 Baltimore, MD, October 13-16 1992.
 
GGF98
Virgil D. Gligor, Serban I. Gavrila, and David Ferraiolo. On the formal definition of separation-of-duty policies and their composition. In Proceedings of IEEE Symposium on Research in Security and Privacy pages 172-183 Oakland CA May 1998.
 
Gui95
Luigi Guiri. A new model for rolebased access control. In Proceedings of 11th Annual Computer Security Application Conference pages 249-255 New Orleans LA December 11-15 1995.
Kuh97
D. Richard Kuhn, Mutual exclusion of roles as a means of implementing separation of duty in role-based access control systems, Proceedings of the second ACM workshop on Role-based access control, p.23-30, November 06-07, 1997, Fairfax, Virginia, United States  [doi>10.1145/266741.266749]
NO99
Matunda Nyanchama , Sylvia Osborn, The role graph model and conflict of interest, ACM Transactions on Information and System Security (TISSEC), v.2 n.1, p.3-33, Feb. 1999  [doi>10.1145/300830.300832]
 
NP90
M.N. Nash and K.R. Poland. Some conundrums concerning separation of duty. In Proceedings of IEEE Symposium on Security and Privacy pages 201-207 Oakland CA May 1990.
OSM00
Sylvia Osborn , Ravi Sandhu , Qamar Munawer, Configuring role-based access control to enforce mandatory and discretionary access control policies, ACM Transactions on Information and System Security (TISSEC), v.3 n.2, p.85-106, May 2000  [doi>10.1145/354876.354878]
 
RS98
Chandramouli Ramaswamy and Ravi Sandhu. Role-based access control features in commercial database management systems. In Proceedings of 21st NIST-NCSC National Information Systems Security Conference pages 503- 511 Arlington VA October 5-8 1998.
 
San88
Ravi Sandhu. Transaction control expressions for separation of duties. In Proceedings of 4th Annual Computer Security Application Conference pages 282- 286 Orlando FL December 1988.
 
San93
Ravi S. Sandhu, Lattice-Based Access Control Models, Computer, v.26 n.11, p.9-19, November 1993  [doi>10.1109/2.241422]
San97
Ravi Sandhu, Roles versus groups, Proceedings of the first ACM Workshop on Role-based access control, p.7-es, November 30-December 02, 1995, Gaithersburg, Maryland, United States  [doi>10.1145/270152.270163]
San98a
Ravi Sandhu, Role activation hierarchies, Proceedings of the third ACM workshop on Role-based access control, p.33-40, October 22-23, 1998, Fairfax, Virginia, United States  [doi>10.1145/286884.286891]
 
San98b
Ravi Sandhu. Role-based access control. In Zelkowitz editor Advances in Computers, Volume: 46. Academic Press 1998.
SBM99
Ravi Sandhu , Venkata Bhamidipati , Qamar Munawer, The ARBAC97 model for role-based administration of roles, ACM Transactions on Information and System Security (TISSEC), v.2 n.1, p.105-135, Feb. 1999  [doi>10.1145/300830.300839]
 
SCFY96
Ravi S. Sandhu , Edward J. Coyne , Hal L. Feinstein , Charles E. Youman, Role-Based Access Control Models, Computer, v.29 n.2, p.38-47, February 1996  [doi>10.1109/2.485845]
 
SZ97
Richard Simon , Mary Ellen Zurko, Separation of Duty in Role-based Environments, Proceedings of the 10th Computer Security Foundations Workshop (CSFW '97), p.183, June 10-12, 1997
 
TDH92
T. C. Ting , Steven A. Demurjian , M.-Y. Hu, Requirements, Capabilities, and Functionalities of User-Role Based Security for an Object-Oriented Design Model, Results of the IFIP WG 11.3 Workshop on Database Security V: Status and Prospects, p.275-296, November 01, 1991

CITED BY  74
Andreas Schaad , Jonathan D. Moffett, A lightweight approach to specification and analysis of role-based access control extensions, Proceedings of the seventh ACM symposium on Access control models and technologies, June 03-04, 2002, Monterey, California, USA
Ernesto Damiani , Sabrina De Capitani di Vimercati , Stefano Paraboschi , Pierangela Samarati, Fine grained access control for SOAP E-services, Proceedings of the 10th international conference on World Wide Web, p.504-513, May 01-05, 2001, Hong Kong, Hong Kong
Najam Perwaiz, Structured management of role-permission relationships, Proceedings of the sixth ACM symposium on Access control models and technologies, p.163-169, May 2001, Chantilly, Virginia, United States
Manuel Koch , Luigi V. Mancini , Francesco Parisi-Presicce, A graph-based formalism for RBAC, ACM Transactions on Information and System Security (TISSEC), v.5 n.3, p.332-365, August 2002
Arun Kumar , Neeran Karnik , Girish Chafle, Context sensitivity in role-based access control, ACM SIGOPS Operating Systems Review, v.36 n.3, p.53-66, July 2002
G. Saunders , M. Hitchens , V. Varadharajan, Role-based access control and the access control matrix, ACM SIGOPS Operating Systems Review, v.35 n.4, p.6-20, October 2001
Andreas Schaad , Jonathan Moffett , Jeremy Jacob, The role-based access control system of a European bank: a case study and discussion, Proceedings of the sixth ACM symposium on Access control models and technologies, p.3-9, May 2001, Chantilly, Virginia, United States
Jason Crampton, Administrative scope and role hierarchy operations, Proceedings of the seventh ACM symposium on Access control models and technologies, June 03-04, 2002, Monterey, California, USA
Horst F. Wedde , Mario Lischka, Modular authorization, Proceedings of the sixth ACM symposium on Access control models and technologies, p.97-105, May 2001, Chantilly, Virginia, United States
Gail-Joon Ahn , Ravi Sandhu, Role-based authorization constraints specification, ACM Transactions on Information and System Security (TISSEC), v.3 n.4, p.207-226, Nov. 2000
Gustaf Neumann , Mark Strembeck, Design and implementation of a flexible RBAC-service in an object-oriented scripting language, Proceedings of the 8th ACM conference on Computer and Communications Security, November 05-08, 2001, Philadelphia, PA, USA
Sabrina De Capitani di Vimercati , Stefano Paraboschi , Pierangela Samarati, Access control: principles and solutions, Software—Practice & Experience, v.33 n.5, p.397-421, 25 April 2003
Steve Barker, Protecting deductive databases from unauthorized retrieval and update requests, Data & Knowledge Engineering, v.43 n.3, p.293-315, December 2002
David F. Ferraiolo , Ravi Sandhu , Serban Gavrila , D. Richard Kuhn , Ramaswamy Chandramouli, Proposed NIST standard for role-based access control, ACM Transactions on Information and System Security (TISSEC), v.4 n.3, p.224-274, August 2001
Elisa Bertino , Barbara Catania , Elena Ferrari , Paolo Perlasca, A logical framework for reasoning about access control models, ACM Transactions on Information and System Security (TISSEC), v.6 n.1, p.71-127, February 2003
Chanjung Park , Seog Park , Sang H. Son, Multiversion Locking Protocol with Freezing for Secure Real-Time Database Systems, IEEE Transactions on Knowledge and Data Engineering, v.14 n.5, p.1141-1154, September 2002
Martin Kuhlmann , Dalia Shohat , Gerhard Schimpf, Role mining - revealing business roles for security administration using data mining technology, Proceedings of the eighth ACM symposium on Access control models and technologies, June 02-03, 2003, Como, Italy
David W. Chadwick , Alexander Otenko, The PERMIS X.509 role based privilege management infrastructure, Future Generation Computer Systems, v.19 n.2, p.277-289, February 2003
Mirosław Kurkowski , Jerzy Pejaś, A propositional logic for access control policy in distributed systems, Artificial intelligence and security in computing systems, Kluwer Academic Publishers, Norwell, MA, 2003
Dongwan Shin , Gail-Joon Ahn , Sangrae Cho , Seunghun Jin, A role administration system in role-based authorization infrastructures: design and implementation, Proceedings of the 2003 ACM symposium on Applied computing, March 09-12, 2003, Melbourne, Florida
Steve Neely , Helen Lowe , David Eyers , Jean Bacon , Julian Newman , Xiaofeng Gong, An architecture for supporting vicarious learning in a distributed environment, Proceedings of the 2004 ACM symposium on Applied computing, March 14-17, 2004, Nicosia, Cyprus
Xuhui Ao , Naftaly H. Minsky, On the role of roles: from role-based to role-sensitive access control, Proceedings of the ninth ACM symposium on Access control models and technologies, June 02-04, 2004, Yorktown Heights, New York, USA
M. Koch , L. V. Mancini , F. Parisi-Presicce, Administrative scope in the graph-based framework, Proceedings of the ninth ACM symposium on Access control models and technologies, June 02-04, 2004, Yorktown Heights, New York, USA
Trent Jaeger , Jonathon E. Tidswell, Rebuttal to the NIST RBAC model proposal, Proceedings of the fifth ACM workshop on Role-based access control, p.65-66, July 26-28, 2000, Berlin, Germany
Savith Kandala , Ravi Sandhu, Secure role-based workflow models, Proceedings of the fifteenth annual working conference on Database and application security, p.45-58, July 15-18, 2001, Niagara, Ontario, Canada
S. V. Raghavan , N. Dhyanesh, Formal description of perfect security, Proceedings of the 15th international conference on Computer communication, p.1113-1131, August 12-14, 2002, Mumbai, Maharashtra, India
Marian Ventuneac , Tom Coffey , Ioan Salomie, A policy-based security framework for Web-enabled applications, Proceedings of the 1st international symposium on Information and communication technologies, September 24-26, 2003, Dublin, Ireland
Steve Barker , Michael Leuschel , Mauricio Varea, Efficient and flexible access control via logic program specialisation, Proceedings of the 2004 ACM SIGPLAN symposium on Partial evaluation and semantics-based program manipulation, p.190-199, August 24-25, 2004, Verona, Italy
Kees Leune , Mike Papazoglou , Willem-Jan van den Heuvel, Specification and querying of security constraints in the EFSOC framework, Proceedings of the 2nd international conference on Service oriented computing, November 15-19, 2004, New York, NY, USA
Nathan Eagle , Alex Pentland, Social Serendipity: Mobilizing Social Software, IEEE Pervasive Computing, v.4 n.2, p.28-34, April 2005
Hua Wang , Jinli Cao , Yanchun Zhang, A Flexible Payment Scheme and Its Role-Based Access Control, IEEE Transactions on Knowledge and Data Engineering, v.17 n.3, p.425-436, March 2005
Joon S. Park , Keith P. Costello , Teresa M. Neven , Josh A. Diosomito, A composite rbac approach for large, complex organizations, Proceedings of the ninth ACM symposium on Access control models and technologies, June 02-04, 2004, Yorktown Heights, New York, USA
James Joshi , Arif Ghafoor , Walid G. Aref , Eugene H. Spafford, Digital Government Security Infrastructure Design Challenges, Computer, v.34 n.2, p.66-72, February 2001
Steve Barker , Peter J. Stuckey, Flexible access control policy specification with constraint logic programming, ACM Transactions on Information and System Security (TISSEC), v.6 n.4, p.501-546, November 2003
Dimitrios Baltatzis , Christos Georgiadis , George Pangalos, Scientific papers: role-based authorizations using mobile agents in healthcare organizations, Technology and Health Care, v.10 n.6, p.449-450, 01 December 2002
Li Yang , Raimund K. Ege , Huiqun Yu, Mediation security specification and enforcement for heterogeneous databases, Proceedings of the 2005 ACM symposium on Applied computing, March 13-17, 2005, Santa Fe, New Mexico
Elisa Bertino , Barbara Catania , Maria Luisa Damiani , Paolo Perlasca, GEO-RBAC: a spatially aware RBAC, Proceedings of the tenth ACM symposium on Access control models and technologies, June 01-03, 2005, Stockholm, Sweden
Jiageng Li , David Cordes, A scalable authorization approach for the Globus grid system, Future Generation Computer Systems, v.21 n.2, p.291-301, 1 February 2005
Ji-Won Byun , Elisa Bertino , Ninghui Li, Purpose based access control of complex data for privacy protection, Proceedings of the tenth ACM symposium on Access control models and technologies, June 01-03, 2005, Stockholm, Sweden
Rafae Bhatti , Arif Ghafoor , Elisa Bertino , James B. D. Joshi, X-GTRBAC: an XML-based policy specification framework and architecture for enterprise-wide access control, ACM Transactions on Information and System Security (TISSEC), v.8 n.2, p.187-227, May 2005
Yuqing Sun , Peng Pan, PRES: a practical flexible RBAC workflow system, Proceedings of the 7th international conference on Electronic commerce, August 15-17, 2005, Xi'an, China
Dongwan Shin , Gail-Joon Ahn , Sangrae Cho , Seunghun Jin, On modeling system-centric information for role engineering, Proceedings of the eighth ACM symposium on Access control models and technologies, June 02-03, 2003, Como, Italy
Jason Crampton , George Loizou, Administrative scope: A foundation for role-based administrative models, ACM Transactions on Information and System Security (TISSEC), v.6 n.2, p.201-231, May 2003
Yanhong A. Liu , Chen Wang , Michael Gorbovitski , Tom Rothamel , Yongxi Cheng , Yingchao Zhao , Jing Zhang, Core role-based access control: efficient implementations by transformations, Proceedings of the 2006 ACM SIGPLAN symposium on Partial evaluation and semantics-based program manipulation, January 09-10, 2006, Charleston, South Carolina
Jason Crampton , George Loizou, Authorisation and antichains, ACM SIGOPS Operating Systems Review, v.35 n.3, p.6-15, July 1 2001
Wolfgang Essmayr , Stefan Probst , Edgar Weippl, Role-Based Access Controls: Status, Dissemination, and Prospects for Generic Security Mechanisms, Electronic Commerce Research, v.4 n.1-2, p.127-156, January-April 2004
Diala Abi Haidar , Nora Cuppens-Boulahia , Frederic Cuppens , Herve Debar, An extended RBAC profile of XACML, Proceedings of the 3rd ACM workshop on Secure web services, November 03-03, 2006, Alexandria, Virginia, USA
Ning Hu , Phillip G. Bradford , Jun Liu, Applying role based access control and genetic algorithms to insider threat detection, Proceedings of the 44th annual southeast regional conference, March 10-12, 2006, Melbourne, Florida
Eduardo Fernández-Medina , Juan Trujillo , Rodolfo Villarroel , Mario Piattini, Developing secure data warehouses with a UML extension, Information Systems, v.32 n.6, p.826-856, September, 2007
Maria Luisa Damiani , Elisa Bertino , Barbara Catania , Paolo Perlasca, GEO-RBAC: A spatially aware RBAC, ACM Transactions on Information and System Security (TISSEC), v.10 n.1, p.2-es, February 2007
JuHum Kwon , Chang-Joo Moon, Visual modeling and formal specification of constraints of RBAC using semantic web technology, Knowledge-Based Systems, v.20 n.4, p.350-356, May, 2007
Tanvir Ahmed , Anand R. Tripathi, Specification and verification of security requirements in a programming model for decentralized CSCW systems, ACM Transactions on Information and System Security (TISSEC), v.10 n.2, p.7-es, May 2007
Sabah S. Al-Fedaghi, Beyond purpose-based privacy access control, Proceedings of the eighteenth conference on Australasian database, p.23-32, January 30-February 02, 2007, Ballarat, Victoria, Australia
M. Parashar , H. Liu , Z. Li , V. Matossian , C. Schmidt , G. Zhang , S. Hariri, AutoMate: Enabling Autonomic Applications on the Grid, Cluster Computing, v.9 n.2, p.161-174, April 2006
Carlos Becker Westphall , Abderrahim Sekkaki , Luis Marco Cáceres Alvarez , Wagner Tatsuya Watanabe, Extending TINA with Secure On-Line Accounting Services, Journal of Network and Systems Management, v.11 n.4, p.379-397, December 2003
Clara Bertolissi , Maribel Fernández, A rewriting framework for the composition of access control policies, Proceedings of the 10th international ACM SIGPLAN conference on Principles and practice of declarative programming, July 15-17, 2008, Valencia, Spain
M. L. Damiani , E. Bertino , P. Perlasca, Data security in location-aware applications: an approach based on RBAC, International Journal of Information and Computer Security, v.1 n.1/2, p.5-38, January 2007
Sylvia Encheva , Sharil Tumin, Preventing conflict situations during authorization, WSEAS Transactions on Computers, v.7 n.4, p.265-272, April 2008
Steve Barker , Michael Leuschel , Mauricio Varea, Efficient and flexible access control via Jones-optimal logic program specialisation, Higher-Order and Symbolic Computation, v.21 n.1-2, p.5-35, June 2008
Ninghui Li , Ji-Won Byun , Elisa Bertino, A Critique of the ANSI Standard on Role-Based Access Control, IEEE Security and Privacy, v.5 n.6, p.41-49, November 2007
Ninghui Li , Ji-Won Byun , Elisa Bertino, A Critique of the ANSI Standard on Role-Based Access Control, IEEE Security and Privacy, v.5 n.6, p.41-49, November 2007
Ashish Kamra , Evimaria Terzi , Elisa Bertino, Detecting anomalous access patterns in relational databases, The VLDB Journal — The International Journal on Very Large Data Bases, v.17 n.5, p.1063-1077, August 2008
Steve Barker, Access control by action control, Proceedings of the 13th ACM symposium on Access control models and technologies, June 11-13, 2008, Estes Park, CO, USA
Andrea Kienle , Carsten Ritterskamp, Facilitating asynchronous discussions in learning communities: the impact of moderation strategies, Behaviour & Information Technology, v.26 n.1, p.73-80, January 2007
Ji-Won Byun , Ninghui Li, Purpose based access control for privacy protection in relational database systems, The VLDB Journal — The International Journal on Very Large Data Bases, v.17 n.4, p.603-619, July 2008
Mor Peleg , Dizza Beimel , Dov Dori , Yaron Denekamp, Situation-Based Access Control: Privacy management via modeling of patient data access scenarios, Journal of Biomedical Informatics, v.41 n.6, p.1028-1040, December, 2008
David Ferraiolo , Rick Kuhn , Ravi Sandhu, RBAC Standard Rationale: Comments on "A Critique of the ANSI Standard on Role-Based Access Control", IEEE Security and Privacy, v.5 n.6, p.51-53, November 2007
John Strassner , José Neuman Souza , David Raymer , Srini Samudrala , Steven Davy , Keara Barrett, The design of a novel context-aware policy model to support machine-based learning and reasoning, Cluster Computing, v.12 n.1, p.17-43, March 2009
Yuqing Sun , Bin Gong , Xiangxu Meng , Zongkai Lin , Elisa Bertino, Specification and enforcement of flexible security policy for active cooperation, Information Sciences: an International Journal, v.179 n.15, p.2629-2642, July, 2009
John Strassner , José Neuman Souza , Sven Meer , Steven Davy , Keara Barrett , David Raymer , Srini Samudrala, The Design of a New Policy Model to Support Ontology-Driven Reasoning for Autonomic Networking, Journal of Network and Systems Management, v.17 n.1-2, p.5-32, June 2009
Rimma V. Nehme , Hyo-Sang Lim , Elisa Bertino , Elke A. Rundensteiner, StreamShield: a stream-centric approach towards security and privacy in data stream environments, Proceedings of the 35th SIGMOD international conference on Management of data, June 29-July 02, 2009, Providence, Rhode Island, USA
Michael Prilla , Carsten Ritterskamp, Collaboration support by co-ownership of documents, Proceeding of the 2006 conference on Cooperative Systems Design: Seamless Integration of Artifacts and Conversations -- Enhanced Concepts of Infrastructure for Communication, p.255-269, May 18, 2006
Radu Constantinescu , Andrei Toma , Iuliana Scorta , Floarea Nastase , Razvan Zota, V-model approach for role engineering, Proceedings of the WSEAES 13th international conference on Computers, p.148-152, July 23-25, 2009, Rodos, Greece
Michael Stieghahn , Thomas Engel, Law-aware access control for international financial environments, Proceedings of the Eighth ACM International Workshop on Data Engineering for Wireless and Mobile Access, June 29-29, 2009, Providence, Rhode Island

INDEX TERMS

Primary Classification:
  D. Software
  D.4 OPERATING SYSTEMS
      D.4.6 Security and Protection
          Subjects: Access controls

Additional Classification:
  C. Computer Systems Organization
  C.2 COMPUTER-COMMUNICATION NETWORKS

  I. Computing Methodologies
  I.6 SIMULATION AND MODELING

  K. Computing Milieux
  K.6 MANAGEMENT OF COMPUTING AND INFORMATION SYSTEMS


General Terms:
Design, Measurement, Performance, Security, Standardization, Theory

Collaborative Colleagues:
Ravi Sandhu: colleagues
David Ferraiolo: colleagues
Richard Kuhn: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player