论文信息 - Cardinality constraint analyse and implementation in access control model

Cardinality constraint analyse and implementation in access control model

Analysis the concept of constraints and diversity of security access control model. According to actual demand, we describe the user-role, user-session, role-session cardinality constraints of the ANSI RBAC model. The differences between static and dynamic cardinality constraints are also represented particularly. An extended model is established including cardinality constraints. In order to support the extended model, some management and query functions are added and modified in implementation.

Jianguo Xiao | Youping Geng | Zhikun Zhang

[1] Ravi S. Sandhu,et al. Task-Based Authorization Controls (TBAC): A Family of Models for Active and Enterprise-Oriented Autorization Management , 1997, DBSec.

[2] Ramaswamy Chandramouli,et al. The Queen's Guard: A Secure Enforcement of Fine-grained Access Control In Distributed Data Analytics Platforms , 2001, ACM Trans. Inf. Syst. Secur..

[3] D. Richard Kuhn,et al. Role-Based Access Controls , 2009, ArXiv.

[4] Ravi S. Sandhu,et al. The NIST model for role-based access control: towards a unified standard , 2000, RBAC '00.

[5] Ravi S. Sandhu,et al. Role-Based Access Control Models , 1996, Computer.

[6] R. Sandhu,et al. Access control: principles and practice , 1994, IEEE Commun. Mag..

[7] David A. Bell,et al. Secure computer systems: mathematical foundations and model , 1973 .