Abstract
The original role graph model for role-based access control assumed a centralized administrative model. Conflict of interest for the centralized model was previously discussed by Nyanchama and Osborn. More recently, a decentralized administrative model for role graphs has been introduced by Wang and Osborn. This paper investigates how considerations of conflict of interest interact with the decentralized administrative model, and the resulting impact on role graph operations.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
American National Standards Institute, Inc. Role-Based Access Control. ANSI INCITS 359-2004. Approved (February 3, 2004)
Ferraiolo, D., Cugini, J., Kuhn, D.: Role-based access control (RBAC): Features and motivations. In: Proceedings 11th Annual Computer Security Applications Conference (1995)
Ionita, C.M., Osborn, S.L.: Privilege administration for the role graph model. In: Research Directions in Data and Applications Security, pp. 15–25. Kluwer Academic Publishers, Dordrecht (2003)
Nyanchama, M., Osborn, S.L.: Access rights administration in role-based security systems. In: Biskup, J., Morgenstern, M., Landwehr, C.E. (eds.) Database Security, VIII, Status and Prospects WG11.3 Working Conference on Database Security, pp. 37–56. North-Holland, Amsterdam (1994)
Nyanchama, M., Osborn, S.L.: The role graph model and conflict of interest. ACM TISSEC 2(1), 3–33 (1999)
Osborn, S., Guo, Y.: Modeling users in role-based access control. In: Fifth ACM RBAC Workshop, Berlin, Germany, pp. 31–38 (July 2000)
Sandhu, R., Coyne, E., Feinstein, H., Youman, C.: Role-based access control models. IEEE Computer 29, 38–47 (1996)
Sandhu, R.S.: Transaction control expressions for separation of duties. In: Proceedings of 4th Annual Computer Security Application Conference, Orlando, FL, pp. 282–286 (December 1988)
Simon, R., Zurko, M.: Separation of duty in role-based environments. In: Proceedings of 10th IEEE Computer Security Foundations Workshop, Rockport, Mass., pp. 183–194 (June 1997)
Song, Y.: Conflict of interest in the administrative role graph model. Master’s thesis, Dept. of Computer Science, The University of Western Ontario (April 2006)
Wang, H.: Role graph administration in an enterprise environment. Master’s thesis, Dept. of Computer Science, The University of Western Ontario (2003)
Wang, H., Osborn, S.: An administrative model for role graphs. In: De Capitani di Vimercati, S., Ray, I., Ray, I. (eds.) Data and Applications Security XVII, Status and Prospects, Estes Park, Colorado, pp. 302–315. Kluwer, Dordrecht (2004)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2006 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Song, Y., Osborn, S.L. (2006). Conflict of Interest in the Administrative Role Graph Model. In: Jonker, W., Petković, M. (eds) Secure Data Management. SDM 2006. Lecture Notes in Computer Science, vol 4165. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11844662_8
Download citation
DOI: https://doi.org/10.1007/11844662_8
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-38984-2
Online ISBN: 978-3-540-38987-3
eBook Packages: Computer ScienceComputer Science (R0)