Wang, Hua and Yong, Jianming and Li, Jiuyong and Peng, Min (2008) Authorization approaches for advanced permission-role assignments. In: CSCWD 2008: 12th International Conference on Computer Supported Cooperative Work in Design , 16-18 Apr 2008, Xi'an China.
Text (Accepted Version)
Role-based access control (RBAC) has been proven to be a flexible and useful access control model for information sharing in distributed collaborative environments. Permission-role assignments (PRA) are one important process in the access model. However, problems may arise during the procedures of PRA. Conflicting permissions may assign to one role, and as a result, the role with the permissions can derive unexpected access capabilities. This paper aims to analyse the problems during the procedures of permission-role assignments in distributed collaborative environments and to develop authorization allocation algorithms to address the problems with permission-role assignments. The algorithms are extended to the case of PRA with the mobility of permission-role relationship. Finally, comparisons with other related work are discussed to demonstrate the effective work of the paper.
Statistics for this ePrint Item
|Item Type:||Conference or Workshop Item (Commonwealth Reporting Category E) (Paper)|
|Item Status:||Live Archive|
|Additional Information:||Accepted version deposited in accordance with the copyright policy of the publisher. ©2008 IEEE. Personal use of this material is permitted. However, permission to reprint/republish this material for advertising or promotional purposes or for creating new collective works for resale or redistribution to servers or lists, or to reuse any copyrighted component of this work in other works must be obtained from the IEEE.|
|Faculty / Department / School:||Historic - Faculty of Business - School of Information Systems|
|Date Deposited:||14 Oct 2009 06:09|
|Last Modified:||02 Apr 2015 04:59|
|Uncontrolled Keywords:||permission-role assignments; RBAC; PRA; authorization|
|Fields of Research :||08 Information and Computing Sciences > 0806 Information Systems > 080699 Information Systems not elsewhere classified|
|Socio-Economic Objective:||E Expanding Knowledge > 97 Expanding Knowledge > 970108 Expanding Knowledge in the Information and Computing Sciences|
|Identification Number or DOI:||doi: 10.1109/CSCWD.2008.4536994|
Actions (login required)
|Archive Repository Staff Only|