Policy analysis for administrative role based access control

  title={Policy analysis for administrative role based access control},
  author={Ping Yang and Mikhail I. Gofman and Zijiang Yang},
  journal={19th IEEE Computer Security Foundations Workshop (CSFW'06)},
  pages={13 pp.-138}
Role-based access control (RBAC) is a widely used model for expressing access control policies. In large organizations, the RBAC policy may be collectively managed by many administrators. Administrative RBAC (ARBAC) is a model for expressing the authority of administrators, thereby specifying how an organization's RBAC policy may change. Changes by one administrator may interact in unintended ways with changes by other administrators. Consequently, the effect of an ARBAC policy is hard to… CONTINUE READING