Conference paper · Book chapter
Attributes Enhanced Role-Based Access Control Model
Attribute-based access control (ABAC) and role-based access control (RBAC) are currently the two most popular access control models. Yet, they both have known limitations and offer features com- plimentary to each other. Due to this fact, integration of RBAC and ABAC has recently emerged as an important area of research.
In this paper, we propose an access control model that combines the two models in a novel way in order to unify their benefits. Our approach provides a fine-grained access control mechanism that not only takes contextual information into account while making the access control decisions but is also suitable for applications where access to resources is controlled by exploiting contents of the resources in the policy.
Language: | English |
---|---|
Publisher: | Springer |
Year: | 2015 |
Pages: | 3-17 |
Proceedings: | 12th International Conference on Trust, Privacy and Security in Digital Business (TrustBus’15) |
Series: | Lecture Notes in Computer Science |
ISBN: | 3319229052 , 3319229060 , 9783319229058 and 9783319229065 |
ISSN: | 03029743 and 16113349 |
Types: | Conference paper and Book chapter |
DOI: | 10.1007/978-3-319-22906-5_1 |
ORCIDs: | Jensen, Christian D. |
Attributes Content-based access control Context-aware access control RBAC Role-explosion Role-permission explosion