Access Control Administration Policies
Administration policies regulate who can modify the authorization state, that is, who has the right to grant and revoke authorizations.
Authorization management is a an important issue when dealing with access control and, as such, research on this topic is strongly related to the developments in access control. A milestone in the field is represented by the research carried out in the 1970s at IBM in the framework of the System R project. In particular, the work by Griffiths and Wade  defines a semantics for authorization revocation, which had greatly influenced the way in which authorization revocation has been implemented in commercial Relational DBMSs. Administrative policies for Object-oriented DBMSs have been studied in . Later on, some extensions to the System R access control administration model, have been defined , with the aim of making it more...
- 1.Atluri V, Bertino E, Ferrari E, Mazzoleni P. Supporting delegation in secure workflow management systems. In: Proceedings of 17th IFIP WG 11.3 Conference on Data and Application Security; 2003. p. 190–202.Google Scholar
- 3.Bertino E, Ferrari E. Administration policies in a multipolicy authorization system. In: Proceedings of 11th IFIP WG 11.3 Conference on Database Security; 1997. p. 341–55.Google Scholar
- 7.Database languages – SQL,ISO/IEC 9075–*; 2003.Google Scholar
- 12.Seitz L, Rissanen E, Sandholm T, Sadighi Firozabadi B, Mulmo O. Policy administration control and delegation using XACML and delegent. In: Proceedings of 6th IEEE/ACM International Workshop on Grid Computing; 2005. p. 49–54.Google Scholar