An Administrative Model for Relationship-Based Access Control

Abstract : Relationship-based access control (ReBAC) originated in the context of social network systems and recently is being generalized to be suitable for general computing systems. This paper defines a ReBAC model, based on Crampton and Sellwood’s RPPM model, designed to be suitable for general computing systems. Our ReBAC model includes a comprehensive administrative model. The administrative model is comprehensive in the sense that it allows and controls changes to all aspects of the ReBAC policy. To the best of our knowledge, it is the first comprehensive administrative model for a ReBAC model suitable for general computing systems. The model is illustrated with parts of a sample access control policy for electronic health records in a healthcare network.
Document type :
Conference papers
Complete list of metadatas

Cited literature [15 references]  Display  Hide  Download

https://hal.inria.fr/hal-01745824
Contributor : Hal Ifip <>
Submitted on : Wednesday, March 28, 2018 - 3:57:51 PM
Last modification on : Wednesday, March 28, 2018 - 3:59:29 PM
Long-term archiving on : Thursday, September 13, 2018 - 12:27:25 PM

File

340025_1_En_4_Chapter.pdf
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Scott Stoller. An Administrative Model for Relationship-Based Access Control. 29th IFIP Annual Conference on Data and Applications Security and Privacy (DBSEC), Jul 2015, Fairfax, VA, United States. pp.53-68, ⟨10.1007/978-3-319-20810-7_4⟩. ⟨hal-01745824⟩

Share

Metrics

Record views

171

Files downloads

57