An attribute-based access matrix model

Zhang, Xinwen; Li, Yingjiu; Nalla, Divya

doi:10.1145/1066677.1066760

Cited by 45 publications

(24 citation statements)

References 10 publications

(7 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…However, when faced with a multi-user, multi-strategy, fine-grained access control environment, RBAC model can not achieve a valid access control result. In order to overcome the shortcomings of the traditional role-based access control mechanism, scholars have launched a lot of research, and proposed multiple access control models, such as TBAC [9,10], T-RBAC [11], OASIS RBAC [12], UCON [13], ABAC [3], RBAC-DC [14], PDAC [15], HBAE [16,17] and etc. In particular, ABAC model introduces the concept of attribute, which makes up for deficiencies in traditional RBAC model, such as: the access control policy is not flexible enough to adapt to the dynamic changes of roles, and the coarse-grained authorization may influence its network adaptability.…”

Section: Related Workmentioning

confidence: 99%

“…[3,[9][10][11][12][13]16,17] Introducing the dynamic attribute rules, the number of role rules needed by access control is reduced.…”

Section: Ha-rbac Reference Modelsmentioning

confidence: 99%

“…Common access control models are: discretionary Access Control (DAC) model, mandatory access control (MAC) model, RBAC model and attribute-based access control (ABAC) model [1][2][3]. However, compared with the DAC and MAC, RBAC model has better adaptability, and has been widely used in various large-scale access control systems.…”

Section: Introductionmentioning

confidence: 99%

“…However, compared with the DAC and MAC, RBAC model has better adaptability, and has been widely used in various large-scale access control systems. Furthermore, using the concept of "attribute", ABAC model expands the definition of roles, identifies different subjects by their attribute group, and models different security demands with various relations between attributes, which can effectively solve the problem of fine-grained authorization and dynamic expansion of large-scale users in a distributed environment [3][4][5].…”

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

A Hybrid Attribute based RBAC Model

Cai¹,

Zheng²,

Du³

2015

IJSIA

View full text Add to dashboard Cite

show abstract

Section: Related Workmentioning

confidence: 99%

“…[3,[9][10][11][12][13]16,17] Introducing the dynamic attribute rules, the number of role rules needed by access control is reduced.…”

Section: Ha-rbac Reference Modelsmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

A Hybrid Attribute based RBAC Model

Cai¹,

Zheng²,

Du³

2015

IJSIA

View full text Add to dashboard Cite

show abstract

“…However, our approach introduces a notion of security token and TP-Functions to capture the mapping between attributes and corresponding access rights. Finally, another interesting approach was presented by Zhang et al [13], who presented their attribute-based access control matrix, which extends classical theory in the field of access control to accommodate attributes as well as the notion of security state. However, it provides no definition for attributebased constraints, which is considered in our approach by means of the proposed TP-Functions and TP-Graphs.…”

mentioning

confidence: 99%

Supporting Secure Collaborations with Attribute-based Access Control

Rubio-Medrano¹,

Dsouza²,

Ahn³

2013

Proceedings of the 9th IEEE International Conference on Collaborative Computing: Networking, Applications and Worksharing

View full text Add to dashboard Cite

Abstract-Attribute-based access control (ABAC) has been regarded in recent years as an effective way for providing security guarantees in collaboration environments, due to its alleged flexibility and efficiency for meeting the access control requirements of heterogeneous organizations. Despite the growing interest in ABAC, there still need consensus on a reference model that comprehensively describes all necessary components and functions, in such a way non-trivial security properties can be effectively taken into account. In order to overcome this limitation, we propose an abstract model that includes a precise definition of attributes and relevant core components. In addition, we introduce the notion of security tokens that serve as a layer of association between attributes and access rights. We also validate our results by presenting both a case study and a comparison with existing approaches that have been previously proposed in the literature.

show abstract

A survey on access control mechanisms for cloud computing

Sibai

Gemayel

Abdo

et al. 2019

Trans Emerging Tel Tech

View full text Add to dashboard Cite

Cloud computing is an Internet‐based computing where the information technology resources are provided to end users following their request. With this technology, users and businesses can access programs, storage, and application development platforms through the Internet and via the services offered by the cloud service providers (CSPs). One of the biggest obstructions in the cloud computing environment is data security. Actually, the data are dispersed across multiple machines and storage devices such as servers, computers, and various mobile devices. The uncontrolled access to these resources and data leads to many important data security risks for the end users. In this way, and in order to ensure the reliability of the cloud and the trust of the users regarding this environment, controlling access to data and resources as well as protecting and ensuring their security becomes a critical task for CSPs. In this work, we present a comprehensive review of existing access control mechanisms used in the cloud computing environment. The advantages and disadvantages of each of these models are discussed and presented along with their analysis. Also, we study the cloud requirements of these models, and we evaluate existing control mechanisms against these requirements.

show abstract

An attribute-based access matrix model

Cited by 45 publications

References 10 publications

A Hybrid Attribute based RBAC Model

A Hybrid Attribute based RBAC Model

Supporting Secure Collaborations with Attribute-based Access Control

A survey on access control mechanisms for cloud computing

Contact Info

Product

Resources

About