| Publication type: |
Article in Proceedings |
| Author: |
Till Mossakowski, Michael Drouineaud, Karsten Sohr |
| Title: |
A temporal-logic extension of role-based access control covering dynamic separation of duties |
| Book / Collection title: |
Proceedings of the 4th International Conference on Temporal Logic, |
| Page(s): |
83 – 90 |
| Year published: |
2003 |
| Publisher: |
IEEE Computer Society Press |
| Abstract: |
Security policies play an important role in today's computer systems. We show some severe limitations of the wide-spread standard role-based
access control (RBAC) model, namely that object-based dynamic separation
of duty as introduced by Nash and Poland cannot be expressed with it. We
suggest to overcome these limitations by extending the RBAC model with an
execution history. The natural next step is then to add temporal logic for the
speci�cation of execution orders. We show that with this, object-based dynamic
separation of duty, as well as other policies, can be adequately speci�ed. |
| PDF Version: |
http://www.informatik.uni-bremen.de/~till/papers/RBAC-dyn2.pdf |
| PostScript Version: |
http://www.informatik.uni-bremen.de/~till/papers/RBAC-dyn2.ps |
| Status: |
Reviewed |
| Last updated: |
15. 06. 2004 |
