TY - GEN
T1 - Reasoning about dynamic delegation in role based access control systems
AU - Ruan, Chun
AU - Varadharajan, Vijay
PY - 2011
Y1 - 2011
N2 - ![CDATA[This paper proposes a logic based framework that supports dynamic delegation for role based access control systems in a decentralised environment. It allows delegation of administrative privileges for both roles and access rights between roles. We have introduced the notion of trust in delegation and have shown how extended logic programs can be used to express and reason about roles and their delegations with trust degrees, roles' privileges and their propagations, delegation depth as well as conflict resolution. Furthermore, our framework is able to enforce various role constraints such as separation of duties, role composition and cardinality constraints. The proposed framework is flexible and provides a sound basis for specifying and evaluating sophisticated role based access control policies in decentralised environments.]]
AB - ![CDATA[This paper proposes a logic based framework that supports dynamic delegation for role based access control systems in a decentralised environment. It allows delegation of administrative privileges for both roles and access rights between roles. We have introduced the notion of trust in delegation and have shown how extended logic programs can be used to express and reason about roles and their delegations with trust degrees, roles' privileges and their propagations, delegation depth as well as conflict resolution. Furthermore, our framework is able to enforce various role constraints such as separation of duties, role composition and cardinality constraints. The proposed framework is flexible and provides a sound basis for specifying and evaluating sophisticated role based access control policies in decentralised environments.]]
UR - http://handle.uws.edu.au:8081/1959.7/544237
UR - http://www.cintec.cuhk.edu.hk/DASFAA2011/
U2 - 10.1007/978-3-642-20149-3
DO - 10.1007/978-3-642-20149-3
M3 - Conference Paper
SN - 9783642201486
SP - 239
EP - 253
BT - Proceedings of the 16th International Conference on Database Systems for Advanced Applications (DASFAA 2011): Hong Kong, China, 22-25 April 2011
PB - Springer
T2 - DASFAA (Conference : Database systems)
Y2 - 22 April 2011
ER -