ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
A methodology for managing roles in legacy systems
Full text PdfPdf (411 KB)
Source Symposium on Access Control Models and Technologies archive
Proceedings of the eighth ACM symposium on Access control models and technologies table of contents
Como, Italy
SESSION: Enterprise Role Administration table of contents
Pages: 33 - 40  
Year of Publication: 2003
ISBN:1-58113-681-1
Authors
Sylvia L. Osborn  The Univ. of Western Ontario, London, Ontario, Canada
Yan Han  The Univ. of Western Ontario, London, Ontario, Canada
Jun Liu  The Univ. of Western Ontario, London, Ontario, Canada
Sponsors
ACM: Association for Computing Machinery
SIGSAC: ACM Special Interest Group on Security, Audit, and Control
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 6,   Downloads (12 Months): 29,   Citation Count: 0
Additional Information:

abstract   references   index terms   collaborative colleagues  

Tools and Actions: Request Permissions Request Permissions    Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/775412.775417
What is a DOI?

ABSTRACT

Role-based access control (RBAC) is well accepted as a good technology for managing and designing access control in systems with many users and many objects. Much of the research on RBAC has been done in an environment isolated from real systems which need to be managed. In this paper, we propose a methodology for using an RBAC design tool we have developed, to manage and effect changes to an underlying relational database. We also discuss how to simulate the role graph model on a Unix system, and extend the methodology just described for relational databases to managing a Unix system when changes are made to the role graph.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
D. Ferraiolo, J. Cugini, and D. Kuhn. Role-based access control (RBAC): Features and motivations. In Proceedings 11th Annual Computer Security Applications Conference, 1995.
 
2
Y. Guo. User/group administration for RBAC. Master's thesis, Dept. of Computer Science, The University of Western Ontario, 1999.
 
3
Y. Han. An XML model for RBAC for interaction with relational databases. Master's thesis, The University of Western Ontario, 2003.
 
4
L. Hua and S. Osborn. Modeling UNIX access control with a role graph. In Proceedings of International Conference on Computers and Information, June 1998.
 
5
J. Liu. Mapping the role graph model to UNIX. Master's thesis, The University of Western Ontario, 2002.
 
6
F. H. Lochovsky , C. C. Woo, Role-based security in data base management systems, on Database Security: Status and Prospects, p.209-222, September 1988, Annapolis, Maryland, United States
 
7
Matunda Nyanchama, Commercial integrity, roles and object orientation, University of Western Ontario, Ont., Canada, 1996
 
8
Matunda Nyanchama , Sylvia L. Osborn, Access Rights Administration in Role-Based Security Systems, Proceedings of the IFIP WG11.3 Working Conference on Database Security VII, p.37-56, August 23-26, 1994
9
Matunda Nyanchama , Sylvia Osborn, The role graph model and conflict of interest, ACM Transactions on Information and System Security (TISSEC), v.2 n.1, p.3-33, Feb. 1999  [doi>10.1145/300830.300832]
10
Sylvia Osborn , Yuxia Guo, Modeling users in role-based access control, Proceedings of the fifth ACM workshop on Role-based access control, p.31-37, July 26-28, 2000, Berlin, Germany  [doi>10.1145/344287.344299]
 
11
Sylvia L. Osborn , Laura K. Reid , Gregory J. Wesson, On the interaction between role-based access control and relational databases, Proceedings of the tenth annual IFIP TC11/WG11.3 international conference on Database security: volume X : status and prospects: status and prospects, p.275-287, January 1997, Como, Italy
 
12
R. Sandhu and G.-J. Ahn. Decentralized group hierarchies in UNIX: An experiment and lessons learned. In National Information Systems Security Conference, 1998.
 
13
Ravi S. Sandhu , Edward J. Coyne , Hal L. Feinstein , Charles E. Youman, Role-Based Access Control Models, Computer, v.29 n.2, p.38-47, February 1996  [doi>10.1109/2.485845]

INDEX TERMS

Primary Classification:
  D. Software
  D.4 OPERATING SYSTEMS
      D.4.6 Security and Protection
          Subjects: Access controls

Additional Classification:
  K. Computing Milieux
  K.6 MANAGEMENT OF COMPUTING AND INFORMATION SYSTEMS
      K.6.5 Security and Protection (D.4.6, K.4.2)


General Terms:
Algorithms, Security


Keywords:
relational databases, role-based access control

Collaborative Colleagues:
Sylvia L. Osborn: colleagues
Yan Han: colleagues
Jun Liu: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player