TRBAC: a temporal role-based access control model

Get BibTex-formatted data

Author

Elisa Bertino, Piero Andrea Bonatti, Elena Ferrari

Entry type

proceedings

Abstract

Role-based access control (RBAC) models are receiving increasing attention as a generalized approach to access control. Roles can be active at certain time periods and non active at others; moreover, there can be activation dependencies among roles. To tackle such dynamic aspects, we introduce Temporal-RBAC (TRBAC), an extensions of the RBAC model. TRBAC supports both periodic activations and deactivations of roles, and temporal dependencies among such actions, expressed by means of role triggers, whose actions may be either executed immediately, or be deferred by an explicity specified amount of time. Both triggers and periodic activations/deactivations may have a priority associated with them, in order to resolve conflicting actions. A formal semantics for the specification language is provided, and a polynomial safeness check is introduced to reject ambiguous or inconsistent specifications. Finally, an implementation architecture is outlined.

Date

2000

URL

http://portal.acm.org/citation ... 8398&CFTOKEN=30584748

Booktitle

Symposium on Access Control Models and Technologies. Proceedings of the fifth ACM workshop on Role-based access control

Key alpha

Bertino

Pages

21-30

Publisher

ACM

Affiliation

Purdue University

Publication Date

2000-00-00

Isbn

1-58113-259-X

BibTex-formatted data

To refer to this entry, you may select and copy the text below and paste it into your BibTex document. Note that the text may not contain all macros that BibTex supports.

@Proceedings{ Bertino,
	title = "TRBAC: a temporal role-based access control model",
	author = "Elisa Bertino, Piero Andrea Bonatti, Elena Ferrari",
	year = "2000",
	booktitle = "Symposium on Access Control Models and Technologies. Proceedings of the fifth ACM workshop on Role-based access control",
	pages = "21-30",
	publisher = "ACM",
	abstract = "Role-based access control (RBAC) models are receiving increasing attention as a generalized approach to access control. Roles can be active at certain time periods and non active at others; moreover, there can be activation dependencies among roles. To tackle such dynamic aspects, we introduce Temporal-RBAC (TRBAC), an extensions of the RBAC model. TRBAC supports both periodic activations and deactivations of roles, and temporal dependencies among such actions, expressed by means of role triggers, whose actions may be either executed immediately, or be deferred by an explicity specified amount of time. Both triggers and periodic activations/deactivations may have a priority associated with them, in order to resolve conflicting actions. A formal semantics for the specification language is provided, and a polynomial safeness check is introduced to reject ambiguous or inconsistent specifications. Finally, an implementation architecture is outlined.",
	affiliation = "Purdue University",
	isbn = "1-58113-259-X",
	url = "http://portal.acm.org/citation.cfm?id=344287.344298&coll=ACM&dl=ACM&CFID=26738398&CFTOKEN=30584748",
}