Organization based access control

  title={Organization based access control},
  author={A. A. E. Kalam and S. Benferhat and A. Mi{\`e}ge and R. E. Baida and F. Cuppens and C. Saurel and P. Balbiani and Y. Deswarte and G. Trouessin},
  journal={Proceedings POLICY 2003. IEEE 4th International Workshop on Policies for Distributed Systems and Networks},
  • A. A. E. Kalam, S. Benferhat, +6 authors G. Trouessin
  • Published 2003
  • Computer Science
  • Proceedings POLICY 2003. IEEE 4th International Workshop on Policies for Distributed Systems and Networks
  • None of the classical access control models such as DAC, MAC, RBAC, TBAC or TMAC is fully satisfactory to model security policies that are not restricted to static permissions but also include contextual rules related to permissions, prohibitions, obligations and recommendations. This is typically the case of security policies that apply to the health care domain. We suggest a new model that provides solutions to specify such contextual security policies. This model, called organization based… CONTINUE READING
    616 Citations
    An access control framework for hybrid policies
    • 6
    • Highly Influenced
    Toward a generic access control model
    • 2
    Expressing Access Control Policies with an Event-Based Approach
    • 8
    • PDF
    Modeling contextual security policies
    • 150
    • PDF
    Integrating non elementary actions in access control models
    • 4
    A prioritized-based approach to handling conflicts in access control
    • S. Benferhat, R. E. Baida
    • Computer Science
    • 16th IEEE International Conference on Tools with Artificial Intelligence
    • 2004
    • 3
    Specification and Verification of Access Control Policies in EB3SEC: Work in Progress
    • 1
    A dynamic access control model
    • 13
    • Highly Influenced


    Supporting multiple access control policies in database systems
    • 126
    Role-Based Access Control Models
    • 5,818
    • PDF
    Supporting relationships in access control using role based access control
    • 110
    • PDF
    The Ponder Policy Specification Language
    • 1,434
    • PDF
    TRBAC: a temporal role-based access control model
    • 345
    • PDF
    Formal specification for role based access control user/role and role/role relationship management
    • 133
    • PDF
    Models for coalition-based access control (CBAC)
    • 103
    Proposed NIST standard for role-based access control
    • 2,540
    • PDF
    A Type/Domain Security Policy for Internet Transmission, Sharing, and Archiving of Medical and Biological Data
    • 2