Access control for protection and sharing of information and physical resources is an essential component of any multi-user computer systems. Role-based-access-control (RBAC) has been introduced and has offered a powerful means of specifying access control decisions, as well as reducing the cost of administrating access control policies and making them less error-prone. We proposed an object-oriented RBAC model (ORBAC) and its formal specifications to describe the relationships of the basic elements of the model. Furthermore, an efficient ORBAC implementation method was proposed to deal with statically and dynamically role authorization so that the problem of separation of duties can be solved.
[1]
Ravi S. Sandhu,et al.
The ARBAC97 model for role-based administration of roles: preliminary description and outline
,
1997,
RBAC '97.
[2]
Trent Jaeger,et al.
A role-based access control model for protection domain derivation and management
,
1997,
RBAC '97.
[3]
Sylvia L. Osborn,et al.
Modeling users in role-based access control
,
2000,
RBAC '00.
[4]
Ravi S. Sandhu,et al.
The NIST model for role-based access control: towards a unified standard
,
2000,
RBAC '00.
[5]
Ravi S. Sandhu,et al.
Lattice-based access control models
,
1993,
Computer.