APDM : Adding Attributes to Permission-Based Delegation Model (APDM : 속성을 추가한 권한위임 모델)

Si-Myeong Kim (김시명); Sang-Hoon Han (한상훈)

doi:10.9708/jksci.2022.27.02.107

APDM : Adding Attributes to Permission-Based Delegation Model

Journal of The Korea Society of Computer and Information
Abbr : JKSCI
2022, 27(2), pp.107-114
DOI : 10.9708/jksci.2022.27.02.107
Publisher : The Korean Society Of Computer And Information
Research Area : Engineering > Computer Science
Received : January 25, 2022
Accepted : February 14, 2022
Published : February 28, 2022

Si-Myeong Kim ¹, Sang-Hoon Han ²

¹동국대학교
²한국복지대학교

Accredited

ABSTRACT

Delegation is a powerful mechanism that allocates access rights to users to provide flexible and dynamic access control decisions. It is also particularly useful in a distributed environment. Among the representative delegation models, the RBDM0 and RDM2000 models are role delegation as the user to user delegation. However, In RBAC, the concept of inheritance of the role class is not well harmonized with the management rules of the actual corporate organization. In this paper, we propose an Adding Attributes on Permission-Based Delegation Model (ABDM) that guarantees the permanence of delegated permissions. It does not violate the separation of duty and security principle of least privilege. ABDM based on RBAC model, supports both the role to role and user to user delegation with an attribute. whenever the delegator wants the permission can be withdrawn, and A delegator can give permission to a delegatee.

KEYWORDS

RBAC, Role, Delegation, Attibute, Permission

Citation status

* References for papers published after 2023 are currently being built.

[journal] Ravi S Sandhu / 1996 / Role-based Access Control Model / IEEE : 38~47

[confproc] Ezedin Barka / 2000 / Framework for Role-based Delegation Model and Some Extensions / Proceedings of the 23rd NIST-NCSC National Information Systems Security Conference : 101~114

[web] Sandhu, R. / 2005 / Role Usage and Activation Hierarchies / http://www.list.gmu.edu/it862/it862s05/Role_Activation_Hierarchies.ppt

[journal] Zhang L / 2003 / A Rule-based Framework for Role-based Delegation Revocation / ACM Transactions on Information and System Security 6(3) : 404~441

[confproc] Crampton, J. / 2006 / Delegation in Role-Based Access Control / Proc. 11th European Symposium On Research In Computer Security (ESORICS 2006)

[confproc] A Ali / 2015 / Taxonomy of delegation model / 12th international conference on information technology-new generations / IEEE : 218~223

[confproc] XinWen Zhang / 2003 / PBDM: A Flexible Delegation Model in RBAC / 8th ACMSympo siumon Access Control Models and Technologies (SACMAT-03) : 149~157

[journal] Jun Zheng / 2011 / / Applied Informatics and Communication 227 : 526~

[confproc] Tahmina Ahmed / 2017 / Classifying and Comparing Attribute-Based and Relationship-Based Access Control / Conference: the Seventh ACM

[confproc] X. Jin / 2012 / A unied attribute-based access control model covering DAC,MAC and RBAC / IFIP Annual Conference on Data and Applications Security and Privacy / Springer : 41~55

[confproc] Chunxiao Ye / 2004 / An attribute-Based-Delegation-Model / ACM International Conference Proceeding Series,Vol85, Proceedings of the 3rd international Conference in Information security : 220~221

[confproc] Jiwan Ninglekhu / 2017 / AARBAC: Attribute-Based Administration of Role-Based Access Control / 2017 IEEE 3rd International Conference on Collaboration and Internet Computing (CIC) / IEEE

[confproc] Koji Hasebe / 2010 / Capabilitybased delegation model in RBAC / Proceedings of the 15th ACM symposium on Access control models and technologies : 109~118

[journal] D. R. Kuhn / 2010 / Adding attributes to role-based access control / Computer 6 : 79~81

[confproc] Bernhard J. Berger / 2019 / Towards Effective Verification of Multi-Model Access Control Properties / Proceedings of the 24th ACM Symposium on Access Control Models and Technologies : 149~160

KJCKorea
Journal Central

Journal of The Korea Society of Computer and Information 2023 KCI Impact Factor : 0.65

APDM : Adding Attributes to Permission-Based Delegation Model

ABSTRACT

KEYWORDS

Citation status

* References for papers published after 2023 are currently being built.

Journal of The Korea Society of Computer and Information 2023 KCI Impact Factor : 0.65

APDM : Adding Attributes to Permission-Based Delegation Model

ABSTRACT

KEYWORDS

Statistics

Tools

Issue List

Citation status

KCI Citation Counts (0)

REFERENCES (15) * References for papers published after 2023 are currently being built.

Search PDF

Citation

* References for papers published after 2023 are currently being built.