Abductive Analysis of Administrative Policies in Rule-Based Access Control

Gupta, Puneet; Stoller, Scott D.; Xu, Zhongyuan

doi:10.1109/tdsc.2013.42

Cited by 17 publications

(12 citation statements)

References 15 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…A third direction for future work is to develop policy analysis algorithms, to help policy developers understand the full implications of proposed administrative policies. We plan to explore an abductive policy analysis for RPPM 2 along the lines of Gupta, Stoller, and Xu's abductive policy analysis for ACAR [9,10].…”

Section: Resultsmentioning

confidence: 99%

“…It is based partly on the sample policy in [9,10]. The permissible relationship graph appears in Figure 1.…”

Section: Example: Healthcare Networkmentioning

confidence: 99%

“…Gupta, Stoller, and Xu define an ABAC model with a comprehensive administrative model [9,10]. Specifically, they define a policy language with Datalog-like authorization rules, and an administrative model based on operations that add and remove facts and rules in the policy.…”

mentioning

confidence: 99%

See 2 more Smart Citations

An Administrative Model for Relationship-Based Access Control

Stoller

2015

Data and Applications Security and Privacy XXIX

Self Cite

View full text Add to dashboard Cite

Abstract. Relationship-based access control (ReBAC) originated in the context of social network systems and recently is being generalized to be suitable for general computing systems. This paper defines a ReBAC model, based on Crampton and Sellwood's RPPM model, designed to be suitable for general computing systems. Our ReBAC model includes a comprehensive administrative model. The administrative model is comprehensive in the sense that it allows and controls changes to all aspects of the ReBAC policy. To the best of our knowledge, it is the first comprehensive administrative model for a ReBAC model suitable for general computing systems. The model is illustrated with parts of a sample access control policy for electronic health records in a healthcare network.

show abstract

Section: Resultsmentioning

confidence: 99%

“…It is based partly on the sample policy in [9,10]. The permissible relationship graph appears in Figure 1.…”

Section: Example: Healthcare Networkmentioning

confidence: 99%

See 1 more Smart Citation

An Administrative Model for Relationship-Based Access Control

Stoller

2015

Data and Applications Security and Privacy XXIX

Self Cite

View full text Add to dashboard Cite

show abstract

“…There are many studies that have applied the situation-based access control, rule/role-based access control, and situation recognition-based access control as representative security technologies of medical information systems [8][9][10].…”

Section: Introductionmentioning

confidence: 99%

Development of Patient Status-Based Dynamic Access System for Medical Information Systems

et al. 2015

View full text Add to dashboard Cite

Abstract:Recently, the hospital information system environment using IT communication technology and utilization of medical information has been increasing. In the medical field, the medical information system only supports the transfer of patient information to medical staff through an electronic health record, without information about patient status. Hence, it needs a method of real-time monitoring for the patient. Also, in this environment, a secure method in approaching healthcare through various smart devices is required. Therefore, in this paper, in order to classify the status of the patients, we propose a dynamic approach of the medical information system in a hospital information environment using the dynamic access control method. Also, we applied the symmetric method of AES (Advanced Encryption Standard). This was the best encryption algorithm for sending and receiving biological information. We can define usefulness as the dynamic access application service based on the final result of the proposed system. The proposed system is expected to provide a new solution for a convenient medical information system.

show abstract

“…Administrators are responsible for providing administrative services such as system maintenance and user support. Permissions to specific data are performed by granular control of adminstrators' rights [5]. Figure 1 shows a common framework of access control policy adapted by most applications [3].…”

Section: Introductionmentioning

confidence: 99%

Managing access control policy from end user perspective in collaborative environment

Ahmad

Abidin

Omar

et al. 2014

2014 IEEE Conference on Open Systems (ICOS)

View full text Add to dashboard Cite

Abstract-currently, collaborative environments offer unlimited data sharing for users. Data owners are poorly involved in handling their data for such environment when it deals with data policy. Normally, data access control policy consists of a resource and authorization descriptions which are assigned by the administrator. It is the responsibility of the administrator to set and specify the policy for application services. The policy details are massive and complex for administrator to handle where most of the times there will be cases of unreview services. This paper proposes a framework that allows data owners to provision policies for storing and managing their shared data with third parties. By adapting RBAC model and adding owner's interest on permissions for data operations and objects, the proposed framework will facilitate data access control whereby owners have the freedom to set their own data access policy.

show abstract

Abductive Analysis of Administrative Policies in Rule-Based Access Control

Cited by 17 publications

References 15 publications

An Administrative Model for Relationship-Based Access Control

An Administrative Model for Relationship-Based Access Control

Development of Patient Status-Based Dynamic Access System for Medical Information Systems

Managing access control policy from end user perspective in collaborative environment

Contact Info

Product

Resources

About