论文信息 - Mutual exclusion of roles as a means of implementing separation of duty in role-based access control systems

Mutual exclusion of roles as a means of implementing separation of duty in role-based access control systems

Role based access control (RBAC) is attracting increasing attention as a security mechanism for both commercial and many military systems. Much of RBAC is fundamentally different from multi-level security (MLS) systems, and the properties of RBAC systems have not been explored formally to the extent that MLS system properties have. This paper explores some aspects of mutual exclusion of roles as a means of implementing separation of duty policies, including a safety property for separation of duty; relationships between different types of exclusion rules; properties of mutual exclusion for roles; constraints on the role hierarchy introduced by mutual exclusion rules; and necessary and sufficient conditions for the safety property to hold. Results have implications for implementing separation of duty controls through mutual exclusion of roles, and for comparing mutual exclusion with other means of implementing separation of duty policies.

D. Richard Kuhn | D. R. Kuhn | D. Richard Kuhn

[1] Michael J. Nash,et al. Some conundrums concerning separation of duty , 1990, Proceedings. 1990 IEEE Computer Society Symposium on Research in Security and Privacy.

[2] Ravi Sandhu,et al. Transaction control expressions for separation of duties , 1988, [Proceedings 1988] Fourth Aerospace Computer Security Applications.

[3] Dan Thomsen,et al. Role-Based Application Design and Enforcement , 1990, Database Security.

[4] Ravi S. Sandhu,et al. Role-Based Access Control Models , 1996, Computer.

[5] R.W. Baldwin,et al. Naming and grouping privileges to simplify security management in large databases , 1990, Proceedings. 1990 IEEE Computer Society Symposium on Research in Security and Privacy.

[6] Edward J. Coyne,et al. Proceedings of the First ACM Workshop on Role-Based Access Control, RBAC 1995, Gaithersburg, MD, USA, November 30 - December 2, 1995 , 1996, RBAC.

[7] Barbara T. Blaustein,et al. A Model of Integrity Separation of Duty for a Trusted DBMS , 1993, DBSec.

[8] Z. G. Ruthberg,et al. National Computer Security Conference Proceedings (11th): A Postscript: Computer Security--Into the Future, 17-20 October 1988 , 1988 .

[9] Dirk Jonscher,et al. Extending Access Control with Duties - Realized by Active Mechanisms , 1993, DBSec.