Design and specification of role based access control policies

M. Hitchens; V. Varadharajan

doi:10.1049/ip-sen:20000792

Design and specification of role based access control policies

M. Hitchens^*, V. Varadharajan

^*Corresponding author for this work

Research output: Contribution to journal › Article › peer-review

25 Citations (Scopus)

Abstract

The authors describe a language based approach to the specification of authorisation policies that can be used to support the range of access control policies in commercial object systems. They discuss the issues involved in the design of a language for role based access control systems. The notion of roles is used as a primitive construct within the language. The basic constructs of the language are discussed and the language is used to specify several access control policies such as role based access control; static and dynamic separation of duty delegation and joint action based access policies. The language is flexible and is able to capture meta-level operations, and it is often these features which are significant when it comes to the applicability of an access control system to practical real situations.

Original language	English
Pages (from-to)	117-129
Number of pages	13
Journal	IEE Proceedings: Software
Volume	147
Issue number	4
DOIs	https://doi.org/10.1049/ip-sen:20000792
Publication status	Published - 2000
Externally published	Yes

Access to Document

10.1049/ip-sen:20000792

Cite this

@article{56636ee9d94c474da8fd49ac625e0fbb,

title = "Design and specification of role based access control policies",

abstract = "The authors describe a language based approach to the specification of authorisation policies that can be used to support the range of access control policies in commercial object systems. They discuss the issues involved in the design of a language for role based access control systems. The notion of roles is used as a primitive construct within the language. The basic constructs of the language are discussed and the language is used to specify several access control policies such as role based access control; static and dynamic separation of duty delegation and joint action based access policies. The language is flexible and is able to capture meta-level operations, and it is often these features which are significant when it comes to the applicability of an access control system to practical real situations.",

author = "M. Hitchens and V. Varadharajan",

year = "2000",

doi = "10.1049/ip-sen:20000792",

language = "English",

volume = "147",

pages = "117--129",

journal = "IEE Proceedings: Software",

issn = "1462-5970",

publisher = "Institute of Electrical Engineers",

number = "4",

}

TY - JOUR

T1 - Design and specification of role based access control policies

AU - Hitchens, M.

AU - Varadharajan, V.

PY - 2000

Y1 - 2000

N2 - The authors describe a language based approach to the specification of authorisation policies that can be used to support the range of access control policies in commercial object systems. They discuss the issues involved in the design of a language for role based access control systems. The notion of roles is used as a primitive construct within the language. The basic constructs of the language are discussed and the language is used to specify several access control policies such as role based access control; static and dynamic separation of duty delegation and joint action based access policies. The language is flexible and is able to capture meta-level operations, and it is often these features which are significant when it comes to the applicability of an access control system to practical real situations.

AB - The authors describe a language based approach to the specification of authorisation policies that can be used to support the range of access control policies in commercial object systems. They discuss the issues involved in the design of a language for role based access control systems. The notion of roles is used as a primitive construct within the language. The basic constructs of the language are discussed and the language is used to specify several access control policies such as role based access control; static and dynamic separation of duty delegation and joint action based access policies. The language is flexible and is able to capture meta-level operations, and it is often these features which are significant when it comes to the applicability of an access control system to practical real situations.

UR - http://www.scopus.com/inward/record.url?scp=0034240041&partnerID=8YFLogxK

U2 - 10.1049/ip-sen:20000792

DO - 10.1049/ip-sen:20000792

M3 - Article

AN - SCOPUS:0034240041

SN - 1462-5970

VL - 147

SP - 117

EP - 129

JO - IEE Proceedings: Software

JF - IEE Proceedings: Software

IS - 4

ER -

Design and specification of role based access control policies

Abstract

Access to Document

Other files and links

Fingerprint

Cite this