Concurrency and Time in Role-Based Access Control

Role-based access control (RBAC) has been proposed as an alternative solution for expressing access control policies. The generalized temporal RBAC (GTRBAC) extends RBAC by adding time in order to support timed based access control policies. However, GTRBAC does not address certain issues of concurrency such as, synchronization. We propose an approach to the expressions of time and concurrency in RBAC based on timed Petri nets. A formal verification method for access control policies is also proposed.

[1]  Nick Roussopoulos,et al.  Timing Requirements for Time-Driven Systems Using Augmented Petri Nets , 1983, IEEE Transactions on Software Engineering.

[2]  Elisa Bertino,et al.  An analysis of expressiveness and design issues for the generalized temporal role-based access control model , 2005, IEEE Transactions on Dependable and Secure Computing.

[3]  Gabriel Alves,et al.  Petri nets tools integration through Eclipse , 2005, eclipse '05.

[4]  C. Ghezzi,et al.  A general way to put time in Petri nets , 1989, IWSSD '89.

[5]  P. Merlin,et al.  Recoverability of Communication Protocols - Implications of a Theoretical Study , 1976, IEEE Transactions on Communications.

[6]  Ravi S. Sandhu,et al.  Role-Based Access Control Models , 1996, Computer.