The Open UniversitySkip to content
 

On Formalizing and Normalizing Role-Based Access Control Systems

Power, David; Slaymaker, Mark and Simpson, Andrew (2009). On Formalizing and Normalizing Role-Based Access Control Systems. The Computer Journal, 52(3) pp. 305–325.

DOI (Digital Object Identifier) Link: https://doi.org/10.1093/comjnl/bxn016
Google Scholar: Look up in Google Scholar

Abstract

Role-based access control (RBAC) has emerged as the dominant access control paradigm for service-oriented systems, with this dominance being reflected by the popularity of RBAC both with the research community and with information technology vendors. RBAC's dominance was solidified in 2004 when an American National Standards Institute standard for RBAC was approved. In this paper, we consider some of the drawbacks of this standard and show how the formal description technique, Z, has been used to underpin a model of RBAC. The model builds on the work of Li et al. and adopts a modular approach. In particular, we consider the relationships between different types of inheritance within our model. We show our model can be used to define a notion of equivalence between different RBAC systems. Finally, we show how—via our model—a particular RBAC system can be normalized to produce a simpler—but semantically equivalent—representation. We illustrate this process via two examples.

Item Type: Journal Item
Copyright Holders: 2008 The Authors
ISSN: 0010-4620
Academic Unit/School: Faculty of Science, Technology, Engineering and Mathematics (STEM) > Computing and Communications
Faculty of Science, Technology, Engineering and Mathematics (STEM)
Item ID: 47368
Depositing User: Mark Slaymaker
Date Deposited: 20 Dec 2017 11:40
Last Modified: 07 Dec 2018 10:44
URI: http://oro.open.ac.uk/id/eprint/47368
Share this page:

Metrics

Altmetrics from Altmetric

Citations from Dimensions

Actions (login may be required)

Policies | Disclaimer

© The Open University   contact the OU