An administrative model for spatio-temporal role based access control

Manisha Sharma, Shamik Sural, Vijayalakshmi Atluri, Jaideep Vaidya

Research output: Chapter in Book/Report/Conference proceedingConference contribution

8 Scopus citations

Abstract

In the present computing environment, access control decisions are often based on contextual information like the location of users and objects as well as the time of making an access request. Several variants of Role based Access Control (RBAC) have recently been proposed that support spatio-temporal policy specifications. However, unlike the administrative models available for RBAC, there is no reported literature on complete administrative models for spatio-temporal role based access control. In this paper, we introduce an administrative model for the recently proposed ESTARBAC (Enhanced Spatio-temporal Role based Access Control) model and name it as ADMINESTAR (Administrative model for Enhanced Spatio-Temporal Role based Access Control). ADMINESTAR defines a broad range of administrative rules and administrative operations. An instance of the set of administrative rules frames the currently effective administrative policy for the system. Administrative rules specify which administrative role can change which ESTARBAC entity. These ESTARBAC entities together define the system state which can be changed by administrative operations upon their successful execution under the control of defined administrative policies. ADMINESTAR would help in practical deployment of spatio-temporal role based access control systems and also provide a means for their formal security analysis.

Original languageEnglish (US)
Title of host publicationInformation Systems Security - 9th International Conference, ICISS 2013, Proceedings
Pages375-389
Number of pages15
DOIs
StatePublished - 2013
Event9th International Conference on Information Systems Security, ICISS 2013 - Kolkata, India
Duration: Dec 16 2013Dec 20 2013

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume8303 LNCS
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Other

Other9th International Conference on Information Systems Security, ICISS 2013
CountryIndia
CityKolkata
Period12/16/1312/20/13

All Science Journal Classification (ASJC) codes

  • Theoretical Computer Science
  • Computer Science(all)

Keywords

  • Administrative Model
  • Administrative Operations
  • Administrative Rules
  • Role Hierarchy
  • Spatio-Temporal Access Control

Fingerprint Dive into the research topics of 'An administrative model for spatio-temporal role based access control'. Together they form a unique fingerprint.

Cite this