A rule-based framework for role-based delegation

Longhua Zhang, Gail Joon Ahn, Bei Tseng Chu

Research output: Chapter in Book/Report/Conference proceedingConference contribution

99 Scopus citations

Abstract

In current role-based systems, security officers handle assignments of users to roles. However, fully depending on this functionality may increase management efforts in a distributed environment because of the continuous involvement from security officers. The emerging technology of role-based delegation provides a means for implementing RBAC in a distributed environment with empowerment of individual users. The basic idea behind a role-based delegation is that users themselves may delegate role authorities to other users to carry out some functions on behalf of the former. This paper presents a role-based delegation model called RDM2000 (role-based delegation model 2000), which is an extension of RBDM0 by supporting hierarchical roles and multi-step delegation. The paper explores different approaches for delegation and revocation. Also, a rule-based language for specifying and enforcing the policies based on RDM2000 is introduced.

Original languageEnglish (US)
Title of host publicationProceedings of Sixth ACM Symposium on Access Control Models and Technologies (SACMAT 2001)
PublisherAssociation for Computing Machinery (ACM)
Pages153-162
Number of pages10
ISBN (Print)1581133502, 9781581133509
DOIs
StatePublished - 2001
EventProceedings of the sixth ACM Symposium on Access Control Models and Technologies (SACMAT 2001) - Chantilly, VA, United States
Duration: May 3 2001May 4 2001

Publication series

NameProceedings of Sixth ACM Symposium on Access Control Models and Technologies (SACMAT 2001)

Conference

ConferenceProceedings of the sixth ACM Symposium on Access Control Models and Technologies (SACMAT 2001)
CountryUnited States
CityChantilly, VA
Period5/3/015/4/01

Keywords

  • Access Control
  • Delegation
  • Role
  • Rule-Based

ASJC Scopus subject areas

  • Engineering(all)

Fingerprint Dive into the research topics of 'A rule-based framework for role-based delegation'. Together they form a unique fingerprint.

  • Cite this

    Zhang, L., Ahn, G. J., & Chu, B. T. (2001). A rule-based framework for role-based delegation. In Proceedings of Sixth ACM Symposium on Access Control Models and Technologies (SACMAT 2001) (pp. 153-162). (Proceedings of Sixth ACM Symposium on Access Control Models and Technologies (SACMAT 2001)). Association for Computing Machinery (ACM). https://doi.org/10.1145/373256.373289