Li, Min and Wang, Hua (2008) ABDM: an extended flexible delegation model in RBAC. In: 8th IEEE International Conference on Computer and Information Technology, 8-11 Jul 2008, Sydney, Australia.
PDF (Accepted Version)
Role-based access control (RBAC) is recognized as an efficient access control model and its delegation authority has been proved to be flexible and useful for information sharing on distributed environment. In today's highly dynamic distributed systems, collaboration is necessary for information sharing with others, so a user may want to delegate a collection of permissions, named an ability, to another user or all members of a group. Based on this fact, this paper builds a new ability-based delegation model (ABDM) within RBAC and develops its delegation algorithm. The framework includes both ability-based user-user delegation and user-group delegation. Further, we analyze delegation granting and revocation authorization. Compared with other existing delegation models, this ability-based delegation model provides great flexibility in authority management.
|Item Type:||Conference or Workshop Item (Commonwealth Reporting Category E) (Paper)|
|Additional Information:||Accepted verison deposited in accordance with the copyright policy of the publisher. This material is presented to ensure timely dissemination of scholarly and technical work. Copyright and all rights therein are retained by authors or by other copyright holders. All persons copying this information are expected to adhere to the terms and constraints invoked by each author's copyright. In most cases, these works may not be reposted without the explicit permission of the copyright holder. Copyright 2008 IEEE. Personal use of this material is permitted. However, permission to reprint/republish this material for advertising or promotional purposes or for creating new collective works for resale or redistribution to servers or lists, or to reuse any copyrighted component of this work in other works must be obtained from the IEEE.|
|Uncontrolled Keywords:||role-based access control; access control|
|Subjects:||280000 Information, Computing and Communication Sciences > 280100 Information Systems > 280199 Information Systems not elsewhere classified
280000 Information, Computing and Communication Sciences > 280100 Information Systems > 280108 Database Management
|Depositing User:||Ms Min Li|
|Date Deposited:||14 Jul 2008 00:04|
|Last Modified:||02 Jul 2013 23:04|
Actions (login required)
|Archive Repository Staff Only|