scholarly journals Security Extensible Access Control Markup Language Policy Integration Based on Role-Based Access Control Model in Healthcare Collaborative Environments

2011 ◽  
Vol 3 (1) ◽  
pp. 101-111 ◽  
Author(s):  
Kuang
Keyword(s):  
Access Control ◽  
Language Policy ◽  
Control Model ◽  
Role Based Access Control ◽  
Markup Language ◽  
Policy Integration ◽  
Collaborative Environments ◽  
Access Control Model ◽  
Role Based

An Extended Role-Based Access Control Model for CSCW Systems

2010 ◽  
Vol 431-432 ◽  
pp. 577-582
Author(s):  
Bing Chen
Keyword(s):  
Information Security ◽  
Access Control ◽  
Control Model ◽  
Partial Ordering ◽  
Role Based Access Control ◽  
Collaborative Environments ◽  
Traditional Role ◽  
Access Control Model ◽  
Network Attacks ◽  
Role Based

Due to the increasing threat of network attacks, network and information security is an upmost concern for CSCW. Traditional Role-Based Access made focus on the typical roles divided according to organizational roles in CSCW. It is insufficient to have role permissions based on object types for collaborative environments. An extended role-based access control model is proposed in this article to expand role to construct the hierarchy of security domain for CSCW. The total CSCW system was called security domain. Subdomain roles inherit security domain roles. Atomic domain roles inherit subdomain roles under role constrains. All extended role and role constraint are partial ordering and are used to restrict the range of access control for all CSCW participants.

Privacy-Aware Organisation-Based Access Control Model (PrivOrBAC)

2013 ◽  
pp. 1656-1679
Author(s):  
Nabil Ajam ◽  
Nora Cuppens-Boulahia ◽  
Fréderic Cuppens
Keyword(s):  
Access Control ◽  
Security Policy ◽  
Control Model ◽  
Role Based Access Control ◽  
Access Control Model ◽  
Privacy Requirements ◽  
Policy Models ◽  
Unique Model ◽  
Role Based

In this chapter, the authors propose the expression and the modelling of the most important principles of privacy. They deduce the relevant privacy requirements that should be integrated in existing security policy models, such as RBAC models. They suggest the application of a unique model for both access control and privacy requirements. Thus, an access control model is to be enriched with new access constraints and parameters, namely the privacy contexts, which should implement the consent and the notification concepts. For this purpose, the authors introduce the Privacy-aware Organisation role Based Access Control (PrivOrBAC) model.

Sign in / Sign up

Export Citation Format

Share Document