TY - GEN
T1 - Research on delegation authorization model based on TRBAC and attribute
AU - An, Jia
AU - Yao, Shuzhen
AU - Zhang, Liang
PY - 2013
Y1 - 2013
N2 - Task-role-based access control (TRBAC) model widely used in workflow does not support the delegation strategies and does not consider the characteristics of entities in the system. In order to meet the requirements of delegation in the workflow environment, this paper proposes a delegation model called TRBAC-and-Attribute-based Delegation (TRABD) model. TRABD model introduces the concept of delegation and attribute to TRBAC model. To improve the security of the delegation process, delegation constraints in TRABD model consist of not only delegation condition role (CR), but also attribute constraint (ATC), delegation-role constraint (DRC), delegation constraint (DC). For better flexibility, ATC is divided into three types: strict ATC, weak ATC and user-defined ATC, so that the delegator can temporarily delegate high level permission to low level delegatee. In addition to this, it maintains the advantagement of traditional TRBAC model.
AB - Task-role-based access control (TRBAC) model widely used in workflow does not support the delegation strategies and does not consider the characteristics of entities in the system. In order to meet the requirements of delegation in the workflow environment, this paper proposes a delegation model called TRBAC-and-Attribute-based Delegation (TRABD) model. TRABD model introduces the concept of delegation and attribute to TRBAC model. To improve the security of the delegation process, delegation constraints in TRABD model consist of not only delegation condition role (CR), but also attribute constraint (ATC), delegation-role constraint (DRC), delegation constraint (DC). For better flexibility, ATC is divided into three types: strict ATC, weak ATC and user-defined ATC, so that the delegator can temporarily delegate high level permission to low level delegatee. In addition to this, it maintains the advantagement of traditional TRBAC model.
KW - Attribute
KW - Authorization model
KW - Delegation
KW - Task-role-based access control
KW - Workflow
UR - https://www.scopus.com/pages/publications/84871691708
U2 - 10.4028/www.scientific.net/AMR.601.307
DO - 10.4028/www.scientific.net/AMR.601.307
M3 - 会议稿件
AN - SCOPUS:84871691708
SN - 9783037855423
T3 - Advanced Materials Research
SP - 307
EP - 311
BT - Management, Manufacturing and Materials Engineering II
T2 - 2012 2nd International Conference on Management, Manufacturing and Materials Engineering, ICMMM 2012
Y2 - 21 September 2012 through 23 September 2012
ER -