Dynamic role-based access control model

Jun Zheng; Qikun Zhang; Shangwen Zheng; Yuan Tan

doi:10.4304/jsw.6.6.1096-1102

Dynamic role-based access control model

Jun Zheng^*, Qikun Zhang, Shangwen Zheng, Yuan Tan

^*Corresponding author for this work

School of Cyberspace Science and Technology

Beijing Institute of Technology

Research output: Contribution to journal › Article › peer-review

11 Citations (Scopus)

Abstract

With the rapid development of network and the coming of information age, access control is particularly important, role-based access control (RBAC) is an access control which is popular. RBAC authorizes and controls the roles corresponding to the users to operate the object. It solves problems of least privilege, separation of duties and so on. However, limited permissions are required to be executed by a certain sequence, that is, the permission owned by a user is controlled by other users'. To solve this problem, this paper proposed an improved model on the base of the original RBAC, not only to retain the original characteristics of RBAC but also solve a specific problem of some permissions which are needed to executed by sequential order, and the analysis shows that this scheme has better security, better flexibility, and can be well applied to the workflow system.

Original language	English
Pages (from-to)	1096-1102
Number of pages	7
Journal	Journal of Software
Volume	6
Issue number	6
DOIs	https://doi.org/10.4304/jsw.6.6.1096-1102
Publication status	Published - Jun 2011

Keywords

Duty separation
Dynamic constrain
Least privilege
RBAC

Access to Document

10.4304/jsw.6.6.1096-1102

Cite this

@article{6c2404f79fcd45efb3f8c54335f3f502,

title = "Dynamic role-based access control model",

abstract = "With the rapid development of network and the coming of information age, access control is particularly important, role-based access control (RBAC) is an access control which is popular. RBAC authorizes and controls the roles corresponding to the users to operate the object. It solves problems of least privilege, separation of duties and so on. However, limited permissions are required to be executed by a certain sequence, that is, the permission owned by a user is controlled by other users'. To solve this problem, this paper proposed an improved model on the base of the original RBAC, not only to retain the original characteristics of RBAC but also solve a specific problem of some permissions which are needed to executed by sequential order, and the analysis shows that this scheme has better security, better flexibility, and can be well applied to the workflow system.",

keywords = "Duty separation, Dynamic constrain, Least privilege, RBAC",

author = "Jun Zheng and Qikun Zhang and Shangwen Zheng and Yuan Tan",

year = "2011",

month = jun,

doi = "10.4304/jsw.6.6.1096-1102",

language = "English",

volume = "6",

pages = "1096--1102",

journal = "Journal of Software",

issn = "1796-217X",

publisher = "Academy Publisher",

number = "6",

}

TY - JOUR

T1 - Dynamic role-based access control model

AU - Zheng, Jun

AU - Zhang, Qikun

AU - Zheng, Shangwen

AU - Tan, Yuan

PY - 2011/6

Y1 - 2011/6

N2 - With the rapid development of network and the coming of information age, access control is particularly important, role-based access control (RBAC) is an access control which is popular. RBAC authorizes and controls the roles corresponding to the users to operate the object. It solves problems of least privilege, separation of duties and so on. However, limited permissions are required to be executed by a certain sequence, that is, the permission owned by a user is controlled by other users'. To solve this problem, this paper proposed an improved model on the base of the original RBAC, not only to retain the original characteristics of RBAC but also solve a specific problem of some permissions which are needed to executed by sequential order, and the analysis shows that this scheme has better security, better flexibility, and can be well applied to the workflow system.

AB - With the rapid development of network and the coming of information age, access control is particularly important, role-based access control (RBAC) is an access control which is popular. RBAC authorizes and controls the roles corresponding to the users to operate the object. It solves problems of least privilege, separation of duties and so on. However, limited permissions are required to be executed by a certain sequence, that is, the permission owned by a user is controlled by other users'. To solve this problem, this paper proposed an improved model on the base of the original RBAC, not only to retain the original characteristics of RBAC but also solve a specific problem of some permissions which are needed to executed by sequential order, and the analysis shows that this scheme has better security, better flexibility, and can be well applied to the workflow system.

KW - Duty separation

KW - Dynamic constrain

KW - Least privilege

KW - RBAC

UR - http://www.scopus.com/inward/record.url?scp=84860389474&partnerID=8YFLogxK

U2 - 10.4304/jsw.6.6.1096-1102

DO - 10.4304/jsw.6.6.1096-1102

M3 - Article

AN - SCOPUS:84860389474

SN - 1796-217X

VL - 6

SP - 1096

EP - 1102

JO - Journal of Software

JF - Journal of Software

IS - 6

ER -

Dynamic role-based access control model

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this