@inproceedings{4314ebe0f6284f3e8c3d9017e239e1a6,
title = "RBAC administration in distributed systems",
abstract = "Large and distributed access control systems are increasingly common, for example in health care. In such settings, access control policies may become very complex, thus complicating correct and efficient adminstration of the access control system. Despite being one of the most widely used access control standards, RBAC does not include an administration model for distributed systems. In this paper we fill this gap. We present a model for the administration of RBAC in a distributed system and propose an administration procedure supporting the principle that different systems protect different sets of objects. We demonstrate that our procedure fulfills the formal requirements deriving from safety and availability, and we show how it can be translated to a practical implementation. Finally, we show how our model can be extended with multiple decentralized administrative systems.",
keywords = "CR-D.4.6, CR-K.6.5, IR-62367, EWI-12936, METIS-251035, SCS-Cybersecurity",
author = "M.A.C. Dekker and J. Crampton and Sandro Etalle",
note = "10.1145/1377836.1377852 ; 13th ACM symposium on Access control models and technologies ; Conference date: 11-06-2008 Through 13-06-2008",
year = "2008",
month = jun,
doi = "10.1145/1377836.1377852",
language = "Undefined",
isbn = "978-1-60558-129-3",
publisher = "Association for Computing Machinery",
number = "302",
pages = "93--102",
editor = "N. Li",
booktitle = "Proceedings of the 13th ACM symposium on Access control models and technologies",
address = "United States",
}