Severity Level of Permissions in Role-Based Access Control

机译：基于角色的访问控制中权限的严重性级别

获取原文

页面导航

摘要
著录项
引文网络
相似文献
相关主题

摘要

The analysis of hidden channels of information leakage with respect to role-based access control includes monitoring of excessive permissions among users. It is not always possible to completely eliminate redundancy. The problem of ranking permissions arises in order to identify the most significant, for which redundancy is most not desirable. A numerical characteristic that reflects the value or importance of permissions is called the 'severity level'. A number of heuristic assumptions have been formulated that make it possible to establish the dependence of the severity level of permissions on the structure of the role hierarchy. A methodology for solving the problem is proposed, using analytic hierarchy process and taking into account these assumptions. The main idea is that the decision tree of the process will be the role graph.

机译：关于基于角色的访问控制，信息泄漏的隐藏渠道的分析包括监视用户之间的过多权限。并非总是可能完全消除冗余。为了确定最重要的等级，出现了对等级权限的问题，对此最不希望有冗余。反映权限的价值或重要性的数字特征称为“严重性级别”。已经制定了许多启发式假设，这些假设使得可以建立权限的严重性级别对角色层次结构的依赖性。提出了一种使用层次分析法并考虑这些假设的解决方法。主要思想是流程的决策树将是角色图。

著录项

来源
《Conference on Dynamics of Systems, Mechanisms and Machines》|2018年|1-5|共5页
会议地点 Omsk(RU)
作者
S. V. Belim; N. F. Bogachenko; A. N. Kabanov;
展开▼
作者单位

Faculty of Computer Sciences Dostoevsky Omsk State University Omsk Russian Federation;

Faculty of Computer Sciences Dostoevsky Omsk State University Omsk Russian;

展开▼
会议组织
原文格式 PDF
正文语种
中图分类
关键词
Access control; Analytic hierarchy process; Organizations; Standards organizations; Decision trees; Information security;

机译：访问控制;层次分析法；组织；标准组织；决策树；信息安全;

相似文献

外文文献
中文文献
专利

1. Permission and role automatic assigning of user in role-based access control [J] . HAN Dao-jun, ZHUO Han-kui, XIA Lan-ting, 中南大学学报（英文版） . 2012,第004期

机译：基于角色的访问控制中用户的权限和角色自动分配
2. Modeling Level Wise Role-Based Access Control for Commercial Database Systems [J] . Trilochan Tarai, Pradipta Kumar Mishra International Journal of Engineering Research and Applications . 2014,第5期

机译：商业数据库系统的建模级基于角色的明智访问控制
3. Modeling Level Wise Role-Based Access Control for Commercial Database Systems [J] . Trilochan Tarai, Pradipta Kumar Mishra International Journal of Engineering Research and Applications . 2014,第5期

机译：商业数据库系统的建模级基于角色的明智访问控制
4. Severity Level of Permissions in Role-Based Access Control [C] . S. V. Belim, N. F. Bogachenko, A. N. Kabanov International Scientific and Technical Conference on Dynamics of Systems, Mechanisms and Machines . 2018

机译：基于角色的访问控制中的权限的严重性级别
5. A specification for an extensible access control Web service featuring access control lists and role-based access control models. [D] . Garcia, Andres. 2004

机译：具有访问控制列表和基于角色的访问控制模型的可扩展访问控制Web服务的规范。
6. A Role-Based Access Control Model in Modbus SCADA Systems. A Centralized Model Approach [O] . Santiago Figueroa-Lorenzo, Javier Añorga, Saioa Arrizabalaga 2019

机译：Modbus SCADA系统中的基于角色的访问控制模型。集中模型方法
7. CA-ARBAC: privacy preserving using context-aware role-based access control on Android permission system [O] . Abdella Juhar Ahmed, Özuysal Mustafa, Tomur Emrah 2016

机译：CA-ARBAC：在Android权限系统上使用基于上下文的基于角色的访问控制来保护隐私
8. Scalable Authorization in Role-Based Access Control Using Negative Permissions and Remote Authorization [R] . Shah, A. P. 2003

机译：使用否定权限和远程授权的基于角色的访问控制中的可扩展授权

Severity Level of Permissions in Role-Based Access Control

摘要

著录项

引文网络

相似文献

相关主题

期刊订阅