Abstract:
Although RBAC models have received broad support as a generalized approach to access control, the administration of roles in large organizations can become quite cumberso...Show MoreMetadata
Abstract:
Although RBAC models have received broad support as a generalized approach to access control, the administration of roles in large organizations can become quite cumbersome. In this paper, we develop a new paradigm for access control and authorization management, called task-role based access control (TRBAC) with multi-constraint. The basic idea of this model different from traditional RBAC is that roles and permissions are not connected directly but are put together by tasks. It is a dynamic authorization model with fine-grained partition on users, roles, tasks and sessions. The unit of task becomes the permission granularity. It is more convenient for enterprise privilege management such as distributed application,C/S access control and workflow management. It can reduce the administrator's burden and avoid some potential safety hazards because of adopted dynamic authorization.
Published in: 2008 Fourth International Conference on Networked Computing and Advanced Information Management
Date of Conference: 02-04 September 2008
Date Added to IEEE Xplore: 12 September 2008
Print ISBN:978-0-7695-3322-3