Integrating Attributes into Role-Based Access Control

Qasim Mahmood Rajpoot, Christian D. Jensen, Ram Krishnan

Research output: Chapter in Book/Report/Conference proceedingArticle in proceedingsResearchpeer-review

983 Downloads (Pure)

Abstract

Role-based access control (RBAC) and attribute-based access control (ABAC) are currently the most prominent access control models. However, they both suffer from limitations and have features
complimentary to each other. Due to this fact, integration of RBAC and ABAC has become a hot area of research recently. We propose an access control model that combines the two models in a novel way in order to unify their benefits. Our approach provides a fine-grained access control mechanism that takes into account the current contextual information while making the access control decisions.
Original languageEnglish
Title of host publicationProceedings of the 29th Annual IFIP WG 11.3 Working Conference on Data and Applications Security and Privacy (2015)
EditorsPierangela Samarati
PublisherSpringer
Publication date2015
Pages242-249
ISBN (Print)978-3-319-20809-1
ISBN (Electronic)978-3-319-20810-7
DOIs
Publication statusPublished - 2015
Event29th Annual IFIP WG 11.3 Working Conference on Data and Applications Security and Privacy (2015) - Fairfax, United States
Duration: 13 Jul 201515 Jul 2015
Conference number: 29
http://dbsec2015.di.unimi.it/home

Conference

Conference29th Annual IFIP WG 11.3 Working Conference on Data and Applications Security and Privacy (2015)
Number29
CountryUnited States
CityFairfax
Period13/07/201515/07/2015
Internet address
SeriesLecture Notes in Computer Science
Volume9149
ISSN0302-9743

Keywords

  • Context-aware access control
  • RBAC
  • Attributes
  • Role-permission explosion

Fingerprint Dive into the research topics of 'Integrating Attributes into Role-Based Access Control'. Together they form a unique fingerprint.

Cite this