The role-based access control system of a European bank

Schaad, Andreas; Moffett, Jonathan; Jacob, Jeremy

doi:10.1145/373256.373257

Cited by 119 publications

(67 citation statements)

References 13 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Furthermore, according to the case study report in [8], for a practical role system, m is much smaller than n 2 , i.e. m << n 2 , with n < N, thus we can get:…”

Section: Theoremmentioning

confidence: 96%

Inconsistency Resolution Method for RBAC Based Interoperation

Huang

Sun

Wang

et al. 2010

IEICE Trans. Inf. & Syst.

View full text Add to dashboard Cite

SUMMARYIn this paper, we propose an inconsistency resolution method based on a new concept, insecure backtracking role mapping. By analyzing the role graph, we prove that the root cause of security inconsistency in distributed interoperation is the existence of insecure backtracking role mapping. We propose a novel and efficient algorithm to detect the inconsistency via finding all of the insecure backtracking role mappings. Our detection algorithm will not only report the existence of inconsistency, but also generate the inconsistency information for the resolution. We reduce the inconsistency resolution problem to the known Minimum-Cut problem, and based on the results generated by our detection algorithm we propose an inconsistency resolution algorithm which could guarantee the security of distributed interoperation. We demonstrate the effectiveness of our approach through simulated tests and a case study. key words: role based access control, security inconsistency, role mapping, inconsistency detection, inconsistency resolution

show abstract

“…Furthermore, according to the case study report in [8], for a practical role system, m is much smaller than n 2 , i.e. m << n 2 , with n < N, thus we can get:…”

Section: Theoremmentioning

confidence: 96%

Inconsistency Resolution Method for RBAC Based Interoperation

Huang

Sun

Wang

et al. 2010

IEICE Trans. Inf. & Syst.

View full text Add to dashboard Cite

show abstract

“…RBAC control method, exploit the association between users and permissions through the assignment of user's roles. Users can be assigned to roles, having associated permissions and thus, users acquire permissions by having roles [9], [10].…”

Section: Introductionmentioning

confidence: 99%

Enhanced Role Based Access Control Mechanism for Electronic Examination System

Onashoga

Abayomi‐Alli²,

Ogunseye³

2014

IJCNIS

View full text Add to dashboard Cite

-Over the years, e-learning and eexamination has become standard in many institutions of higher learning. It has been observed that examination questions and results can be easily intercepted by invalid users, thus the security of resources shared among valid users is not guaranteed. In order to solve these problems as it relates to access control, a Role based Examination System (RBES) was designed, developed and evaluated. RBES attempted to solve the security issue by the combination of two authentication techniques: textbased authentication and graphical password authentication. The Text-based authentication utilizes two text-based parameters namely the username and password. The graphical password authentication makes use of a finite set of controls (RBES chooses radio buttons) which are identified by numbers. These numbers constitute the password used for graphical authentication. To improve on resource sharing among users in the examination system, RBES proposes role management (role creation, role update, role removal) and user management (user creation, user update and user removal). The developed system made use of asp.net, C#, IIS server, WAMP server, Mysql and other tools for its development. RBES was tested by some legitimate and illegitimate users and the performance of the system was found to be satisfactory, hence RBES shows an efficient and reliable scheme that can be deployed in any examination or e-learning system. Finally the potential threats to the system were modeled and the use of weak passwords was found to be the most likely threat the system could be vulnerable to.

show abstract

“…The large set of the cross-domain access control policies makes the management a complicated task [1]. The policy information visualization [2] technology can express the logical relation of the complex information intuitively which can effectively improve the management ability of the multidomain policy integration.…”

Section: Introductionmentioning

confidence: 99%

Visualization Analysis of Multi-Domain Access Control Policy Integration Based on Tree-Maps and Semantic Substrates

Pan

Xu²

2012

IIM

View full text Add to dashboard Cite

The complexity of multi-domain access control policy integration makes it difficult to understand and manage the policy conflict information. The policy information visualization technology can express the logical relation of the complex information intuitively which can effectively improve the management ability of the multi-domain policy integration. Based on the role-based access control model, this paper proposed two policy analyzing methods on the separated domain statistical information of multi-domain policy integration conflicts and the policy element levels of inter-domain and element mapping of cross-domain respectively. In addition, the corresponding visualization tool is developed. We use the tree-maps algorithm to statistically analyze quantity and type of the policy integration conflicts. On that basis, the semantic substrates algorithm is applied to concretely analyze the policy element levels of inter-domain and role and permission mapping of cross-domain. Experimental result shows tree-maps and semantic substrates can effectively analyze the conflicts of multi-domain policy integration and have a good application value.

show abstract

The role-based access control system of a European bank

Cited by 119 publications

References 13 publications

Inconsistency Resolution Method for RBAC Based Interoperation

Inconsistency Resolution Method for RBAC Based Interoperation

Enhanced Role Based Access Control Mechanism for Electronic Examination System

Visualization Analysis of Multi-Domain Access Control Policy Integration Based on Tree-Maps and Semantic Substrates

Contact Info

Product

Resources

About