The Complexity of Discretionary Access Control

Dranger, Stephen; Sloan, Robert H.; Solworth, Jon A.

doi:10.1007/11908739_29

Cited by 14 publications

(7 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Each service provider provides different plans to access the services and packages. 1 SP has two plans 1 R and 2 R , 2 SP has only one plan 3 R . Each plan is considered as a role in the system.…”

Section: Permissions Conflicts In Prbacmentioning

confidence: 99%

See 1 more Smart Citation

Package-Role Based Authorization Control Model for Wireless Network Services

Ngo

et al. 2009

2009 International Conference on Availability, Reliability and Security

View full text Add to dashboard Cite

Authorization and authentication services are the major components protecting integrity and authenticity. Authorization control service provides a mechanism to verify user permission to access services. In wireless networks, not only users may change roles but also services can be added, removed or modified more frequently. Although Role-Based Access Control or RBAC can simplify the management of dynamic users, it does not consider dynamic permissions between roles and services. To allow dynamic permission assignment between roles and services, in this paper, we present an authorization control model extended from RBAC using packages. The authorization control is specially designed to achieve optimal cost for large scale and dynamic networks of users and services.

show abstract

Section: Permissions Conflicts In Prbacmentioning

confidence: 99%

“…In traditional approaches, Discretionary Access Control [1] and Mandatory Access Control [2] were the only two possible access control models. In 1992, NIST found that these access control models are not always suitable to many organizations [7].…”

Section: Introductionmentioning

confidence: 99%

Package-Role Based Authorization Control Model for Wireless Network Services

Ngo

et al. 2009

2009 International Conference on Availability, Reliability and Security

View full text Add to dashboard Cite

show abstract

“…There are many studies in the literature on access control methods. A study related to DAC was presented in [44] regarding its complexity, safety, and issues in object-oriented databases. RBAC was widely studied as well, and researchers in [45] proposed object sensitive role assignment, which is a generalized RBAC model for object-oriented languages.…”

Section: Related Work On Access Controlmentioning

confidence: 99%

Access Control Model for Modern Virtual e-Government Services: Saudi Arabian Case Study

Albrahim¹,

Alsalamah²,

Alsalamah³

et al. 2018

ijacsa

View full text Add to dashboard Cite

Government services require intensive information exchange and interconnection among governmental agencies to provide specialized online services and allow informed decision-making. This could compromise the integrity, confidentiality, and/or availability of the information being exchanged. Government agencies are accountable and liable for the protection of information they possess and use on a least privilege security principle basis even after dissemination. However, traditional access control models are short of achieving this as they do not allow dynamic access to unknown users to the system, they do not provide security controls at a fine-grained level, and they do not provide persistent control over this information. This paper proposes a novel secure access control model for cross-governmental agencies. The secure model deploys a Role-centric Mandatory Access Control MAC (R-MAC) model, suggests a classification scheme for e-Government information, and enforces its application using XML security technologies. By using the proposed model, privacy could be preserved by having dynamic, persistent, and fine-grained control over their shared information.

show abstract

“…Another unique charecteristics of access control mechanism is to restore all the attempts being made the user to access the cloud resources for screen trust and building reputation. At present various access control schemes are-Discretionary Access Control (DAC) [41], Mandatory Access Control (MAC) [42]., and Role Based Access Control (RBAC) [43]. The generic architecture of existing access control over cloud is as shown below.…”

Section: Access Controlmentioning

confidence: 99%

An Investigation towards Paradigm Shift of Cloud Computing Approach and Need of New Security Protocol

Veena¹,

Pujeri²,

Indiramma³

2015

IJCA

View full text Add to dashboard Cite

Today cloud computing platform is de-facto and strategic component of corporate and end user applications usage in pervasive and ubiquitous manner. The level based services makes the higher possibilities of availability, scalability, collaborative in most cost effective way. However integration of various service layers into cloud stack also invites intrinsic threats, risk and vulnerabilities, thus security become prime concern for the adaptabilities. This paper mainly focus on understanding the changing trends of usage of cloud computing platform for various services, fundamental research approaches towards cloud security and finally need of requirements for strengthening the security protocol. The facts, concept and statistics illustrated in this paper is of extensive use to the researchers, industries and academicians towards developing new mechanisms and protocol for future secured cloud framework.

show abstract

The Complexity of Discretionary Access Control

Cited by 14 publications

References 11 publications

Package-Role Based Authorization Control Model for Wireless Network Services

Package-Role Based Authorization Control Model for Wireless Network Services

Access Control Model for Modern Virtual e-Government Services: Saudi Arabian Case Study

An Investigation towards Paradigm Shift of Cloud Computing Approach and Need of New Security Protocol

Contact Info

Product

Resources

About