東華大學圖書館 |

Language: English

Help

回圖書館首頁

手機版館藏查詢

Back

Switch To: Labeled | MARC Mode | ISBD

A generalized temporal role based ac...

Joshi, James B. D.

Linked to FindBook

Google Book

Amazon

博客來

A generalized temporal role based access control model for developing secure systems.

Record Type:	Electronic resources : Monograph/item
Title/Author:	A generalized temporal role based access control model for developing secure systems./
Author:	Joshi, James B. D.
Description:	214 p.
Notes:	Source: Dissertation Abstracts International, Volume: 64-11, Section: B, page: 5607.
Contained By:	Dissertation Abstracts International64-11B.
Subject:	Computer Science. -
Online resource:	http://pqdd.sinica.edu.tw/twdaoapp/servlet/advanced?query=3113822

A generalized temporal role based access control model for developing secure systems.
Joshi, James B. D.

A generalized temporal role based access control model for developing secure systems. - 214 p.

Source: Dissertation Abstracts International, Volume: 64-11, Section: B, page: 5607.

Thesis (Ph.D.)--Purdue University, 2003.

A key issue in computer system security is to protect information against unauthorized access. Emerging workflow-based applications in healthcare, manufacturing, the financial sector, and e-commerce inherently have complex, time-based access control requirements. To address the diverse security needs of these applications, a Role Based Access Control (RBAC) approach can be used as a viable alternative to traditional discretionary and mandatory access control approaches. The key features of RBAC include policy neutrality, support for least privilege, and efficient access control management. However, existing RBAC approaches do not address the growing need for supporting time-based access control requirements for these applications.Subjects--Topical Terms:

626642
Computer Science.

A generalized temporal role based access control model for developing secure systems.
LDR:02552nmm 2200265 4500 001 1863422
005 20041202113739.5
008 130614s2003 eng d
035 $a (UnM)AAI3113822
035 $a AAI3113822
040 $a UnM $c UnM
100 1 $a Joshi, James B. D. $3 961623
245 1 2 $a A generalized temporal role based access control model for developing secure systems.
300 $a 214 p.
500 $a Source: Dissertation Abstracts International, Volume: 64-11, Section: B, page: 5607.
500 $a Major Professor: Arif Ghafoor.
502 $a Thesis (Ph.D.)--Purdue University, 2003.
520 $a A key issue in computer system security is to protect information against unauthorized access. Emerging workflow-based applications in healthcare, manufacturing, the financial sector, and e-commerce inherently have complex, time-based access control requirements. To address the diverse security needs of these applications, a Role Based Access Control (RBAC) approach can be used as a viable alternative to traditional discretionary and mandatory access control approaches. The key features of RBAC include policy neutrality, support for least privilege, and efficient access control management. However, existing RBAC approaches do not address the growing need for supporting time-based access control requirements for these applications.
520 $a This research presents a Generalized Temporal Role Based Access Control (GTRBAC) model that combines the key features of the RBAC model with a powerful temporal framework. The proposed GTRBAC model allows specification of a comprehensive set of time-based access control policies, including temporal constraints on role enabling, user-role and role-permission assignments, and role activations. The model provides an event-based mechanism for supporting dynamic access control policies, which are crucial for developing secure workflow-based enterprise applications. In addition, the temporal hierarchies and separation of duty constraints facilitated by GTRBAC allow the development of security policies for commercial enterprises. The thesis provides various design guidelines for managing complexity and building secure systems based on this model. X-GTRBAC, an XML-based policy language has been developed to allow specification of GTRBAC policies.
590 $a School code: 0183.
650 4 $a Computer Science. $3 626642
690 $a 0984
710 2 0 $a Purdue University. $3 1017663
773 0 $t Dissertation Abstracts International $g 64-11B.
790 1 0 $a Ghafoor, Arif, $e advisor
790 $a 0183
791 $a Ph.D.
792 $a 2003
856 4 0 $u http://pqdd.sinica.edu.tw/twdaoapp/servlet/advanced?query=3113822