ABDM: an extended flexible delegation model in RBAC

Li, Min and Wang, Hua (2008) ABDM: an extended flexible delegation model in RBAC. In: 8th IEEE International Conference on Computer and Information Technology, 8-11 Jul 2008, Sydney, Australia.

PDF (Accepted Version)

Download (154Kb)
PDF (Documentation)

Download (344Kb)


Role-based access control (RBAC) is recognized as an efficient access control model and its delegation authority has been proved to be flexible and useful for information sharing on distributed environment. In today's highly dynamic distributed systems, collaboration is necessary for information sharing with others, so a user may want to delegate a collection of permissions, named an ability, to another user or all members of a group. Based on this fact, this paper builds a new ability-based delegation model (ABDM) within RBAC and develops its delegation algorithm. The framework includes both ability-based user-user delegation and user-group delegation. Further, we analyze delegation granting and revocation
authorization. Compared with other existing delegation models, this ability-based delegation model provides great flexibility in authority management.

Statistics for USQ ePrint 4264
Statistics for this ePrint Item
Item Type: Conference or Workshop Item (Commonwealth Reporting Category E) (Paper)
Refereed: Yes
Item Status: Live Archive
Additional Information: Accepted verison deposited in accordance with the copyright policy of the publisher. This material is presented to ensure timely dissemination of scholarly and technical work. Copyright and all rights therein are retained by authors or by other copyright holders. All persons copying this information are expected to adhere to the terms and constraints invoked by each author's copyright. In most cases, these works may not be reposted without the explicit permission of the copyright holder. Copyright 2008 IEEE. Personal use of this material is permitted. However, permission to reprint/republish this material for advertising or promotional purposes or for creating new collective works for resale or redistribution to servers or lists, or to reuse any copyrighted component of this work in other works must be obtained from the IEEE.
Faculty / Department / School: Historic - Faculty of Sciences - Department of Maths and Computing
Date Deposited: 14 Jul 2008 00:04
Last Modified: 02 Jul 2013 23:04
Uncontrolled Keywords: role-based access control; access control
Fields of Research : 08 Information and Computing Sciences > 0806 Information Systems > 080604 Database Management
08 Information and Computing Sciences > 0806 Information Systems > 080699 Information Systems not elsewhere classified
08 Information and Computing Sciences > 0803 Computer Software > 080303 Computer System Security
Socio-Economic Objective: E Expanding Knowledge > 97 Expanding Knowledge > 970108 Expanding Knowledge in the Information and Computing Sciences
Identification Number or DOI: 10.1109/CIT.2008.4594707
URI: http://eprints.usq.edu.au/id/eprint/4264

Actions (login required)

View Item Archive Repository Staff Only