Abstract
Most of access control mechanisms use the matrix model to represent protection states of computer systems. We present a variant of the access control matrix model obtained by incorporating temporal constraints saying that “subject s has right r on object o since at least duration d”. In connection with this enriched model, we also discuss the decidable and undecidable cases of one of the major themes of computer security, namely the classical safety problem for access control matrices.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Bertino, E., Bonatti, P., Ferrari, E.: TRBAC: a temporal role-based access control model. ACM Transactions on Information and System Security 4, 65–104 (2001)
Bishop, M.: Computer Security: Art and Science. Addison-Wesley, Reading (2003)
Ferraiolo, D., Barkley, J., Kuhn, D.: A role-based access control model and reference implementation within a corporate intranet. ACM Transactions on Information And System Security 2, 34–64 (1999)
Ferraiolo, D., Kuhn, D., Chandramouli, R.: Role-Based Access Control. Artech House (2003)
Ferraiolo, D., Sandhu, R., Gavrila, S., Kuhn, D., Chandramouli, R.: Proposed NIST standard for role-based access control. ACM Transactions on Information And System Security 4, 224–274 (2001)
Gal, A., Atluri, V.: An authorization model for temporal data. In: Proceedings of the 7th ACM conference on Computer and Communications Security, pp. 144–153. ACM Press, New York (2000)
Harrison, M., Ruzzo, W.: Monotonic protection systems. In: Foundations of Secure Computation, pp. 337–363. Academic Press, London (1978)
Harrison, M., Ruzzo, W., Ullman, J.: Protection in operating systems. Communications of the ACM 19, 461–471 (1976)
Lampson, B.: Protection. Operating Systems Review 8, 18–24 (1974)
Miller, D., Baldwin, R.: Access control by Boolean expression evaluation. In: Fifth Annual Computer Security Conference, pp. 131–139. IEEE Computer Society Press, Los Alamitos (1990)
Sandhu, R.: The typed access matrix model. In: 1992 IEEE Computer Society Symposium on Research in Security and Privacy, pp. 122–136. IEEE Computer Society Press, Los Alamitos (1992)
Sandhu, R., Coyne, E., Feinstein, H., Youman, C.: Role-based access control models. Computer 29, 38–47 (1996)
Sandhu, R., Ganta, S.: On testing for absence of rights in access control models. In: The Computer Security Foundations Workshop VI, pp. 109–118. IEEE Computer Society Press, Los Alamitos (1993)
Soshi, M.: Safety analysis of the dynamic-typed access matrix model. In: Cuppens, F., Deswarte, Y., Gollmann, D., Waidner, M. (eds.) ESORICS 2000. LNCS, vol. 1895, pp. 106–121. Springer, Heidelberg (2000)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2005 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Balbiani, P., Cheikh, F. (2005). Safety Problems in Access Control with Temporal Constraints. In: Gorodetsky, V., Kotenko, I., Skormin, V. (eds) Computer Network Security. MMM-ACNS 2005. Lecture Notes in Computer Science, vol 3685. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11560326_13
Download citation
DOI: https://doi.org/10.1007/11560326_13
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-29113-8
Online ISBN: 978-3-540-31998-6
eBook Packages: Computer ScienceComputer Science (R0)