SA-RBAC: An Innovative Role-Based Access Control Model Introducing Self-Authentication Mechanism

According to the existing problems in access control model: privilege abuse and neglecting high security grade of sensitive information in practical application, an innovative access control model SARBAC is proposed in this paper. It introduces selfauthentication mechanism into the Reference RBAC Model. A theoretical description of self-authentication mechanism is given at first, and the follow is a systematical formal presentation of SA-RBAC on the base of Core RBAC Model. Several key issues on the new model are discussed as well.

[1]  Ramaswamy Chandramouli,et al.  The Queen's Guard: A Secure Enforcement of Fine-grained Access Control In Distributed Data Analytics Platforms , 2001, ACM Trans. Inf. Syst. Secur..

[2]  Myeonggil Choi,et al.  Development of a Flexible Access Control Design by Extending RBAC , 2006, 2006 First International Conference on Communications and Networking in China.

[3]  Ravi S. Sandhu Future Directions in Role-Based Access Control Models , 2001, MMM-ACNS.

[4]  Li YuDept Unifying Data, Behaviours, and Messages in Object-Oriented Databases , 2022 .

[5]  Nematollaah Shiri,et al.  Formalization of RBAC Policy with Object Class Hierarchy , 2007, ISPEC.

[6]  P. Samarati,et al.  Access control: principle and practice , 1994, IEEE Communications Magazine.

[7]  Ravi S. Sandhu,et al.  Role-based access control: a multi-dimensional view , 1994, Tenth Annual Computer Security Applications Conference.

[8]  Elisa Bertino,et al.  RBAC models - concepts and trends , 2003, Comput. Secur..

[9]  Ravi S. Sandhu,et al.  Role-Based Access Control Models , 1996, Computer.

[10]  Liang Chen,et al.  Applications of the Oriented Permission Role-Based Access Control Model , 2007, 2007 IEEE International Performance, Computing, and Communications Conference.