RBAC Administration in Distributed Systems

M.A.C. Dekker; J. Crampton; Sandro Etalle

RBAC Administration in Distributed Systems

M.A.C. Dekker, J. Crampton, Sandro Etalle

Research output: Book/Report › Report › Professional

290 Downloads (Pure)

Abstract

Despite a large body of literature on the administration of RBAC policies in centralized systems, the problem of the administration of a distributed system has hardly been addressed. We present a formal system for modelling a distributed RBAC system and its administration. We define two basic requirements for distributed RBAC systems, based on safety and availability. We present a transition-system modelling the actual implementation of administrative commands and we show that it preserves those requirements. We also indicate how the system can be used as a basis for a practical implementation.

Original language	Undefined
Place of Publication	Enschede
Publisher	Centre for Telematics and Information Technology (CTIT)
Number of pages	19
Publication status	Published - 4 Apr 2007

Publication series

Name	CTIT Technical Report Series
Publisher	Centre for Telematics and Information Technology, University of Twente
No.	2/TR-CTIT-07-27
ISSN (Print)	1381-3625

Keywords

SCS-Cybersecurity
METIS-241570
IR-67055
EWI-9639

Access to Document

Cite this

@book{851a468ceb444cce9e754480755554cd,

title = "RBAC Administration in Distributed Systems",

abstract = "Despite a large body of literature on the administration of RBAC policies in centralized systems, the problem of the administration of a distributed system has hardly been addressed. We present a formal system for modelling a distributed RBAC system and its administration. We define two basic requirements for distributed RBAC systems, based on safety and availability. We present a transition-system modelling the actual implementation of administrative commands and we show that it preserves those requirements. We also indicate how the system can be used as a basis for a practical implementation.",

keywords = "SCS-Cybersecurity, METIS-241570, IR-67055, EWI-9639",

author = "M.A.C. Dekker and J. Crampton and Sandro Etalle",

year = "2007",

month = apr,

day = "4",

language = "Undefined",

series = "CTIT Technical Report Series",

publisher = "Centre for Telematics and Information Technology (CTIT)",

number = "2/TR-CTIT-07-27",

address = "Netherlands",

}

TY - BOOK

T1 - RBAC Administration in Distributed Systems

AU - Dekker, M.A.C.

AU - Crampton, J.

AU - Etalle, Sandro

PY - 2007/4/4

Y1 - 2007/4/4

N2 - Despite a large body of literature on the administration of RBAC policies in centralized systems, the problem of the administration of a distributed system has hardly been addressed. We present a formal system for modelling a distributed RBAC system and its administration. We define two basic requirements for distributed RBAC systems, based on safety and availability. We present a transition-system modelling the actual implementation of administrative commands and we show that it preserves those requirements. We also indicate how the system can be used as a basis for a practical implementation.

AB - Despite a large body of literature on the administration of RBAC policies in centralized systems, the problem of the administration of a distributed system has hardly been addressed. We present a formal system for modelling a distributed RBAC system and its administration. We define two basic requirements for distributed RBAC systems, based on safety and availability. We present a transition-system modelling the actual implementation of administrative commands and we show that it preserves those requirements. We also indicate how the system can be used as a basis for a practical implementation.

KW - SCS-Cybersecurity

KW - METIS-241570

KW - IR-67055

KW - EWI-9639

M3 - Report

T3 - CTIT Technical Report Series

BT - RBAC Administration in Distributed Systems

PB - Centre for Telematics and Information Technology (CTIT)

CY - Enschede

ER -