Show simple item record

AuthorHu, Jinwei
AuthorKhan, Khaled M.
AuthorZhang, Yan
AuthorBai, Yun
AuthorLi, Ruixuan
Available date2020-11-04T10:00:41Z
Publication Date2017
Publication NameKnowledge and Information Systems
ResourceScopus
URIhttp://dx.doi.org/10.1007/s10115-016-0974-4
URIhttp://hdl.handle.net/10576/16905
AbstractThe role-based access control (RBAC) has significantly simplified the management of users and permissions in information systems. In dynamic environments, systems are constantly undergoing changes, and accordingly, the associated configurations need to be updated in order to reflect the systems' security evolutions. However, such updating process is generally complicated as the resulting system state is expected to meet necessary constraints. This paper presents an approach for assisting administrators to make a desirable update, in light of changes in RBAC systems. We propose a formalization of the update approach, investigate its properties, and develop an updating algorithm based on model checking techniques. Our experimental results demonstrate the effectiveness of the proposed approach.
SponsorThis paper was made possible by Grant NPRP 09-079-1-013 from Qatar National Research Fund (QNRF). The statements made herein are solely the responsibility of the authors.
Languageen
PublisherSpringer London
SubjectComputational complexity
Model checking
Role engineering
Role hierarchy
Role updating
Role-based access control (RBAC)
TitleRole updating in information systems using model checking
TypeArticle
Pagination187-234
Issue Number1
Volume Number51
dc.accessType Abstract Only


Files in this item

FilesSizeFormatView

There are no files associated with this item.

This item appears in the following Collection(s)

Show simple item record