Abstract
The role graph model for role-based access control has been introduced in a number of previous papers. In these previous presentations of the role graph model, it is assumed that when privilege p is present in a role, all privileges that might be implied by p are also present in the role. This paper gives revised algorithms to ensure that this is done, using a model for implication of permissions originally developed for object-oriented databases.
The original version of this chapter was revised: The copyright line was incorrect. This has been corrected. The Erratum to this chapter is available at DOI: 10.1007/978-0-387-35697-6_26
Chapter PDF
Similar content being viewed by others
References
A. V. Aho, M. R. Garey and J. D. Ullman. The transitive reduction of a directed graph. SIAM Journal of Computing, 1 (2): 131–137, 1972.
M. Nyanchama and S. L. Osborn. Access rights administration in role-based security systems. In J. Biskup, M. Morgenstern, and C. E. Landwehr (editors), Database Security, VIII: Status and Prospects, pages 37–56. North-Holland, Amsterdam, The Netherlands, 1994.
M. Nyanchama and S. L. Osborn. The role graph model and conflict of interest. ACM Transactions on Information and System Security, 2 (1): 333, 1999.
S. Osborn and Y. Guo. Modeling users in role-based access control. In Proceedings of the Fifth ACM Workshop on Role-Based Access Control, pages 31–38, Berlin, Germany, 2000.
F. Rabitti, E. Bertino, W. Kim and D. Woelk. A model of authorization for next-generation database systems. ACM Transactions on Database Systems, 16 (1): 88–131, 1991.
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2003 IFIP International Federation for Information Processing
About this chapter
Cite this chapter
Ionita, C., Osborn, S. (2003). Privilege Administration for the Role Graph Model. In: Gudes, E., Shenoi, S. (eds) Research Directions in Data and Applications Security. IFIP — The International Federation for Information Processing, vol 128. Springer, Boston, MA. https://doi.org/10.1007/978-0-387-35697-6_2
Download citation
DOI: https://doi.org/10.1007/978-0-387-35697-6_2
Publisher Name: Springer, Boston, MA
Print ISBN: 978-1-4757-6413-0
Online ISBN: 978-0-387-35697-6
eBook Packages: Springer Book Archive