Dynamic delegation framework for role based access control in distributed data management systems

Access control has become problematic in several organizations because of the difficulty in establishing security and preventing malicious users from mimicking roles. Moreover, there is no flexibility among users in the participation in their roles, and even controlling them. Several role-based access control (RBAC) mechanisms have been proposed to alleviate these problems, but the security has not been fully realized. In this work, however, we present an RBAC model based on blockchain technology to enhance user authentication before knowledge is accessed and utilized in a knowledge management system (KMS). Our blockchain-based system model and the smart contract ensure that transparency and knowledge resource immutability are achieved. We also present smart contract algorithms and discussions about the model. As an essential part of RBAC model applied to KMS environment, trust is ensured in the network. Evaluation results show that our system is efficient.

Download Full-text

A Flexible Role Based Access Control Engine Model

Advanced Materials Research ◽

10.4028/www.scientific.net/amr.403-408.2477 ◽

2011 ◽

Vol 403-408 ◽

pp. 2477-2480

Author(s):

Zhen Wu Wang

Keyword(s):

Access Control ◽

Safety Management ◽

Reference Model ◽

Control Model ◽

Management Systems ◽

Software Systems ◽

Role Based Access Control ◽

Access Control Model ◽

Engine Model ◽

Role Based

The normal role-based access control (RBAC) model decouples users and permissions through roles,and different software systems have different implementation syteles.The paper proposes an engine model which can configure the RBAC management systems flexibly.It is a configuration tool to generate different RBAC management systems which meet different users’ requirements. The practice proves that the engine model can improve the efficiency and quality of software development. The role-based access control model decouples users and permissions through roles in order to simplify authorized operations and safety management[1]. Many literatures[2-6] discuss the RBAC model from different aspects. Some literatures[2-3] add new elements to the normal RBAC model,and these models are unidimensional according to the manipulated resources.For example, the NIST RBAC reference model [2] extends and standardize the RBAC96 [1] model reasonably.Some literatures[4-5] introduce time property to RBAC model and they are two-dimensional models according to the manipulated resources.Literature[6] furtherly add visual data muster to RBAC model and proposes a three-dimensional access control model. All of these models only discuss access control model theoretically,and different role-based access control modules in software systems have different instantiation sytles.For example, a RBAC module in one software system can not meet the access control requirements in another system because different RBAC modules have different table fields in order to realize certain requirements. This paper proposes a flexible role-based access control engine which can configure the RBAC module for different systmes according to each customer’s requirement.The engine is a configuration tool and it can realize various RBAC modules which have different table fields in database.The paper is organized as follows.Section I introduces the basic concepts of the NIST RBAC model;Seciton II details the description of RBAC engine model and gives the configuration steps using this engine to generate RBAC instances,and at last section III gives an example and concludes the paper.

Download Full-text

The application of role-based access control in workflow management systems

2004 IEEE International Conference on Systems, Man and Cybernetics (IEEE Cat. No.04CH37583) ◽

10.1109/icsmc.2004.1401067 ◽

2005 ◽

Author(s):

Jianxun Liu ◽

Lixia Sun

Keyword(s):

Access Control ◽

Workflow Management ◽

Management Systems ◽

Role Based Access Control ◽

Workflow Management Systems ◽

Role Based

Download Full-text