Attributed role based access control model

Aftab, Muhammad Umar; Habib, Muhammad Asif; Mehmood, Nasir; Aslam, Mubeen; Irfan, Muhammad

doi:10.1109/ciacs.2015.7395571

Cited by 27 publications

(27 citation statements)

References 9 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…This type of assignment makes it a dynamic RBAC. The automatic assignment of permissions and users to roles save time of administrator and decreases the load as well [24]. However, the model did not support the SOD and role hierarchies.…”

Section: Rbac and Abac Mergermentioning

confidence: 96%

“…In addition, ABAC model is unable to provide the least privilege principle. The merger of RBAC and ABAC can overcome their drawbacks and provide benefits of both models [11,24,36].…”

Section: Problems In Rbac and Abac Modelsmentioning

confidence: 99%

“…Previously, SOD was implemented on the basis of permissions rather than roles [23]; however, the implementation was done in the typical and static RBAC model. In addition, an attributed RBAC model was proposed [24]; however, the model is good only for the basic RBAC working. The proposed model implements the permission-based SOD in dynamic RBAC.…”

Section: Overviewmentioning

confidence: 99%

“…In the dynamic RBAC model, we make the model more flexible as compared to the previously proposed model [24]. The basic entities of RBAC are objects, roles, and users contain attributes.…”

Section: Dynamic Rbac Modelmentioning

confidence: 99%

“…Previously, these permissions were declared and assigned manually in a typical RBAC model. In addition, the attributed RBAC model [24] is unable to deal with SOD. The second contribution is the implementation of SOD on the level of permissions instead of the level of roles.…”

Section: Introductionmentioning

confidence: 99%

See 4 more Smart Citations

Permission-Based Separation of Duty in Dynamic Role-Based Access Control Model

et al. 2019

Self Cite

View full text Add to dashboard Cite

A major development in the field of access control is the dominant role-based access control (RBAC) scheme. The fascination of RBAC lies in its enhanced security along with the concept of roles. In addition, attribute-based access control (ABAC) is added to the access control models, which is famous for its dynamic behavior. Separation of duty (SOD) is used for enforcing least privilege concept in RBAC and ABAC. Moreover, SOD is a powerful tool that is used to protect an organization from internal security attacks and threats. Different problems have been found in the implementation of SOD at the role level. This paper discusses that the implementation of SOD on the level of roles is not a good option. Therefore, this paper proposes a hybrid access control model to implement SOD on the basis of permissions. The first part of the proposed model is based on the addition of attributes with dynamic characteristics in the RBAC model, whereas the second part of the model implements the permission-based SOD in dynamic RBAC model. Moreover, in comparison with previous models, performance and feature analysis are performed to show the strength of dynamic RBAC model. This model improves the performance of the RBAC model in terms of time, dynamicity, and automatic permissions and roles assignment. At the same time, this model also reduces the administrator’s load and provides a flexible, dynamic, and secure access control model.

show abstract

Section: Rbac and Abac Mergermentioning

confidence: 96%

“…In addition, ABAC model is unable to provide the least privilege principle. The merger of RBAC and ABAC can overcome their drawbacks and provide benefits of both models [11,24,36].…”

Section: Problems In Rbac and Abac Modelsmentioning

confidence: 99%

Section: Overviewmentioning

confidence: 99%

“…In the dynamic RBAC model, we make the model more flexible as compared to the previously proposed model [24]. The basic entities of RBAC are objects, roles, and users contain attributes.…”

Section: Dynamic Rbac Modelmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

Permission-Based Separation of Duty in Dynamic Role-Based Access Control Model

et al. 2019

Self Cite

View full text Add to dashboard Cite

show abstract

Developing an access control management metamodel for secure digital enterprise architecture modeling

Nahar

Gill

Roach³

2021

Security and Privacy

View full text Add to dashboard Cite

There is an increasing interest in embedding the security in the design of digital enterprise architecture (EA) modeling platform to secure the digital assets.Access control management (ACM) is one of the key aspects of a secure digital enterprise architecture modeling platform design. Typical enterprise architecture modeling approaches mainly focus on the modeling of business, information, and technology elements. This draws our attention to this important question: how to model ACM for a secure digital EA modeling platform to ensure secure access to digital assets? This article aims to address this important research question in collaboration with our industry partner and developed an ontology-based ACM metamodel that can be used by enterprises to model their ACM for a particular situation. This research has been conducted using the well-known action-design research (ADR) method to develop and evaluate the ACM metamodel for the secure digital EA modeling platform.

show abstract

Resource and Attribute Based Access Control Model for System with Huge Amounts of Resources

Gang

Wang

et al. 2019

Green, Pervasive, and Cloud Computing

View full text Add to dashboard Cite

Attributed role based access control model

Cited by 27 publications

References 9 publications

Permission-Based Separation of Duty in Dynamic Role-Based Access Control Model

Permission-Based Separation of Duty in Dynamic Role-Based Access Control Model

Developing an access control management metamodel for secure digital enterprise architecture modeling

Resource and Attribute Based Access Control Model for System with Huge Amounts of Resources

Contact Info

Product

Resources

About