CiteSeerX — Role-Based Access Control Models

Role-Based Access Control Models (1996) [733 citations — 33 self]

Popular Tags

No tags have been applied to this document.

BibTeX | Add To MetaCart

@ARTICLE{Sandhu96role-basedaccess,
    author = {Ravi S. Sandhu and Edward J. Coyne and Hal L. Feinstein and Charles E. Youman},
    title = {Role-Based Access Control Models},
    journal = {IEEE Computer},
    year = {1996},
    volume = {29},
    number = {2},
    pages = {38--47}
}

Years of Citing Articles

Bookmarks

OpenURL

Abstract:

This article introduces a family of reference models for role-based access control (RBAC) in which permissions are associated with roles, and users are made members of appropriate roles. This greatly simplifies management of permissions. Roles are closely related to the concept of user groups in access control. However, a role brings together a set of users on one side and a set of permissions on the other, whereas user groups are typically defined as a set of users only. The basic concepts of RBAC originated with early multi-user computer systems. The resurgence of interest in RBAC has been driven by the need for general-purpose customizable facilities for RBAC and the need to manage the administration of RBAC itself. As a consequence RBAC facilities range from simple to complex. This article describes a novel framework of reference models to systematically address the diverse components of RBAC, and their interactions.

Citations

477	Security policies and security models – Goguen, Meseguer - 1982
370	A Lattice Model of Secure Information Flow – Denning - 1976
269	A Note on the Confinement Problem – Lampson - 1973
266	Secure computer systems: Mathematical foundations and model – Bell, Padula - 1973
265	Integrity Considerations for Secure Computer Systems – Biba - 1977
238	The Chinese Wall security policy – Brewer, Nash - 1989
189	Role-based access controls – Ferraiolo, Kuhn - 1992
102	A Practical Alternative to Hierarchical Integrity Policies – Boebert, Kain - 1985
86	The typed access matrix model – Sandhu - 1992
60	Access rights administration in role-based security systems – Nyanchama, Osborn - 1995
31	Conceptual Foundations for a Model of Task-based Authorizations – Thomas, Sandhu - 1994
31	Non-discretionary controls for commercial applications – Lipner - 1982
30	An examination of federal and commercial access control policy needs – Ferraiolo, Gilbert, et al. - 1993
20	User group structures in object-oriented database authorization – Fernandez, Wu, et al. - 1994
20	A lattice interpretation of the Chinese Wall policy – Sandhu - 1992
19	A note on the con nement problem – Lampson - 1973
16	Design for dynamic user-role-based security – Mohammed, Dilts - 1994
16	Architectural implications of covert channels – Proctor, Neumann - 1992
15	User-role based security in the ADAM object-oriented design and analyses environment – Hu, Demurjian, et al. - 1995
15	Delegation of authority – MOFFETT, SLOMAN - 1991
10	Protection." 5th Princeton Symposium on Information Science and Systems – Lampson - 1971
7	Criteria Editorial Board. Common Criteria for Information Technology Security – Common - 1996
5	von Solms and Isak van der Merwe. The management of computer security profiles using a role-oriented approach – H - 1994
3	Extending access controls with duties\|realized by active mechanisms – Jonscher - 1993
1	The Modeling and Representation of Security Semantics for Database Applications – Smith - 1990