Engineering of Role/Permission Assignments

New Orleans, Lousiana December 10-December 14

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/ACSAC.2001.991529

17th Annual Computer Security Applica ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by P. Epstein Articles by R. Sandhu

	ASCII Text	x
	P. Epstein, R. Sandhu, "Engineering of Role/Permission Assignments," Computer Security Applications Conference, Annual, pp. 0127, 17th Annual Computer Security Applications Conference (ACSAC'01), 2001.

	BibTex	x
	@article{ 10.1109/ACSAC.2001.991529, author = {P. Epstein and R. Sandhu}, title = {Engineering of Role/Permission Assignments}, journal ={Computer Security Applications Conference, Annual}, volume = {0}, year = {2001}, isbn = {0-7695-1405-7}, pages = {0127}, doi = {http://doi.ieeecomputersociety.org/10.1109/ACSAC.2001.991529}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computer Security Applications Conference, Annual TI - Engineering of Role/Permission Assignments SN - 0-7695-1405-7 SP EP A1 - P. Epstein, A1 - R. Sandhu, PY - 2001 VL - 0 JA - Computer Security Applications Conference, Annual ER -

P. Epstein, George Mason University Student

R. Sandhu, George Mason University

In this paper, we develop a model for engineering role-permission assignment. Our model builds upon the well-known RBAC96 model [SCFY96]. Assigning permissions to roles is considered too complex an activity to accomplish directly. Instead we advocate breaking down this process into a number of steps. We specifically introduce the concept of Jobs, Work-patterns, and Tasks to facilitate role-permission assignment into a series of smaller steps. We describe methodologies for using this model in two different ways. In a top-down approach, roles are decomposed into permissions, whereas in a bottom-up approach, permissions are aggregated into roles.

Citation:

P. Epstein, R. Sandhu, "Engineering of Role/Permission Assignments," acsac, pp.0127, 17th Annual Computer Security Applications Conference (ACSAC'01), 2001

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.