Role updating in information systems using model checking
| Author | Hu, Jinwei |
| Author | Khan, Khaled M. |
| Author | Zhang, Yan |
| Author | Bai, Yun |
| Author | Li, Ruixuan |
| Available date | 2020-11-04T10:00:41Z |
| Publication Date | 2017 |
| Publication Name | Knowledge and Information Systems |
| Resource | Scopus |
| Abstract | The role-based access control (RBAC) has significantly simplified the management of users and permissions in information systems. In dynamic environments, systems are constantly undergoing changes, and accordingly, the associated configurations need to be updated in order to reflect the systems' security evolutions. However, such updating process is generally complicated as the resulting system state is expected to meet necessary constraints. This paper presents an approach for assisting administrators to make a desirable update, in light of changes in RBAC systems. We propose a formalization of the update approach, investigate its properties, and develop an updating algorithm based on model checking techniques. Our experimental results demonstrate the effectiveness of the proposed approach. |
| Sponsor | This paper was made possible by Grant NPRP 09-079-1-013 from Qatar National Research Fund (QNRF). The statements made herein are solely the responsibility of the authors. |
| Language | en |
| Publisher | Springer London |
| Subject | Computational complexity Model checking Role engineering Role hierarchy Role updating Role-based access control (RBAC) |
| Type | Article |
| Pagination | 187-234 |
| Issue Number | 1 |
| Volume Number | 51 |
Files in this item
| Files | Size | Format | View |
|---|---|---|---|
|
There are no files associated with this item. |
|||
This item appears in the following Collection(s)
-
Information Intelligence [76 items ]