Abstract
Flexibility of management is an important requisite for access control systems as it allows users to adapt the access control system in accordance with practical requirements. This paper builds on earlier work where we defined administrative policies for a general class of RBAC models. We present a formal definition of administrative refinement and we show that there is an ordering for administrative privileges which yields administrative refinements of policies. We argue (by giving an example) that this privilege ordering can be very useful in practice, and we prove that the privilege ordering is tractable.
Original language | English |
---|---|
Title of host publication | Secure Data Management |
Subtitle of host publication | 4th VLDB Workshop, SDM 2007, Vienna, Austria, September 23-24, 2007. Proceedings |
Editors | Willem Jonker, Milan Petković |
Place of Publication | Berlin |
Publisher | Springer |
Pages | 33-46 |
Number of pages | 15 |
ISBN (Electronic) | 978-3-540-75248-6 |
ISBN (Print) | 978-3-540-75247-9 |
DOIs | |
Publication status | Published - Sept 2007 |
Event | 4th VLDB Workshop on Secure Data Management, SDM 2007 - Vienna, Austria Duration: 23 Sept 2007 → 24 Sept 2007 Conference number: 4 |
Publication series
Name | Lecture Notes in Computer Science |
---|---|
Publisher | Springer |
Volume | 4721 |
ISSN (Print) | 0302-9743 |
ISSN (Electronic) | 1611-3349 |
Workshop
Workshop | 4th VLDB Workshop on Secure Data Management, SDM 2007 |
---|---|
Abbreviated title | SDM |
Country/Territory | Austria |
City | Vienna |
Period | 23/09/07 → 24/09/07 |
Keywords
- SCS-Cybersecurity
- Access control
- Access control policy
- Access control model
- Access control system
- Administrative policy