Encyclopedia of Database Systems

2018 Edition
| Editors: Ling Liu, M. Tamer Özsu

Administration Model for RBAC

  • Yue Zhang
  • James B. D. Joshi
Reference work entry
DOI: https://doi.org/10.1007/978-1-4614-8265-9_1507

Synonyms

ARBAC97; SARBAC

Definition

The central ideal of administration model for RBAC is to use the role itself to manage roles. There are two well-known families of administration RBAC models.

Administrative RBAC

The Administrative RBAC family of models known as ARBAC97 [3] introduces administrative roles that are used to manage the regular roles. These roles can form a role hierarchy and may have constraints. ARBAC97 consists of three administrative models, the user-role assignment (URA97) model, the permission-role assignment (PRA97) model, and the role-role administration (RRA97) model. URA97 defines which administrative roles can assign which users to which regular roles by means of the relation: can_assign. Similarly, PRA97 defines which administrative roles can assign which permissions to which regular roles by means of the relation: can_assignp. Each of these relations also has a counterpart for revoking the assignment (e.g., can_revoke). RRA97 defines which administrative...

This is a preview of subscription content, log in to check access.

Recommended Reading

  1. 1.
    Crampton J, Loizou G. Administrative scope: a foundation for role-based administrative models. ACM Trans Inf Syst Secur. 2003;6(2):201–31.CrossRefGoogle Scholar
  2. 2.
    Oh S, Sandhu R. A model for role administration using organization structure. In: Proceedings of the 7th ACM Symposium on Access Control Models and Technologies; 2002. p. 155–62.Google Scholar
  3. 3.
    Sandhu R, Bhamidipati V, Munawer Q. The ARBAC97 model for role-based administration of roles. ACM Trans Inf Syst Secur. 1999;2(1):105–35.CrossRefGoogle Scholar
  4. 4.
    Sandhu R, Munawer Q. The ARBAC99 model for administration of roles (1999). In: Proceedings of the 15th Computer Security Applications Conference; 1999. p. 229.Google Scholar
  5. 5.
    Zhang Y, James B, Joshi D. SARBAC07: scoped administration model for RBAC with hybrid hierarchy. In: Proceedings of the 3rd International Symposium on Information Assurance and Security; 2007, p. 149–54.Google Scholar
  6. 6.
    Zhang Y, Joshi JBD. ARBAC07: a role based administration model for RBAC with hybrid hierarchy. In: Proceedings of the IEEE International Conference Information Reuse and Integration; 2007, p. 196–202.Google Scholar

Copyright information

© Springer Science+Business Media, LLC, part of Springer Nature 2018

Authors and Affiliations

  1. 1.University of PittsburghPittsburghUSA

Section editors and affiliations

  • Elena Ferrari
    • 1
  1. 1.DiSTAUniv. of InsubriaVareseItaly