A formal role-based access control model for security policies in multi-domain mobile networks

2013 ◽  
Vol 57 (1) ◽  
pp. 330-350 ◽  
Author(s):  
D. Unal ◽  
M.U. Caglayan
Keyword(s):  
Access Control ◽  
Mobile Networks ◽  
Control Model ◽  
Security Policies ◽  
Role Based Access Control ◽  
Access Control Model ◽  
Role Based

Privacy-Aware Organisation-Based Access Control Model (PrivOrBAC)

2013 ◽  
pp. 1656-1679
Author(s):  
Nabil Ajam ◽  
Nora Cuppens-Boulahia ◽  
Fréderic Cuppens
Keyword(s):  
Access Control ◽  
Security Policy ◽  
Control Model ◽  
Role Based Access Control ◽  
Access Control Model ◽  
Privacy Requirements ◽  
Policy Models ◽  
Unique Model ◽  
Role Based

In this chapter, the authors propose the expression and the modelling of the most important principles of privacy. They deduce the relevant privacy requirements that should be integrated in existing security policy models, such as RBAC models. They suggest the application of a unique model for both access control and privacy requirements. Thus, an access control model is to be enriched with new access constraints and parameters, namely the privacy contexts, which should implement the consent and the notification concepts. For this purpose, the authors introduce the Privacy-aware Organisation role Based Access Control (PrivOrBAC) model.

Towards a Scalable Role and Organization Based Access Control Model with Decentralized Security Administration

2009 ◽  
pp. 94-117
Author(s):  
Zhixiong Zhang ◽  
Xinwen Zhang ◽  
Ravi Sandhu
Keyword(s):  
Access Control ◽  
Scale Up ◽  
Control Model ◽  
Security Policies ◽  
Traditional Role ◽  
Access Control Model ◽  
Role Hierarchy ◽  
Role Based ◽  
Organization Based Access Control ◽  
Administrative Tasks

This chapter addresses the problem that traditional role-base access control (RBAC) models do not scale up well for modeling security policies spanning multiple organizations. After reviewing recently proposed Role and Organization Based Access Control (ROBAC) models, an administrative ROBAC model called AROBAC07 is presented and formalized in this chapter. Two examples are used to motivate and demonstrate the usefulness of ROBAC. Comparison between AROBAC07 and other administrative RBAC models are given. We show that ROBAC/AROBAC07 can significantly reduce administration complexity for applications involving a large number of organizational units. Finally, an application compartment-based delegation model is introduced, which provides a method to construct administrative role hierarchy in AROBAC07. We show that the AROBAC07 model provides convenient ways to decentralize administrative tasks for ROBAC systems and scales up well for role-based systems involving a large number of organizational units.

Sign in / Sign up

Export Citation Format

Share Document