An Extension for Combination of Duty Constraints in Role-Based Access Control
Ali Hosseini, Mohammad Abdollahi Azgomi
TL;DR
This paper extends Role-Based Access Control by introducing new static and dynamic combination of duty constraints, including hierarchical considerations, to better manage dependent roles and their interactions.
Contribution
It proposes novel types of SCD and DCD constraints, including strong dependent roles and hierarchical extensions, enhancing RBAC's flexibility and security.
Findings
New SCD and DCD constraints introduced
Hierarchical extension for SCD constraints proposed
Enhanced management of dependent roles in RBAC
Abstract
Among access control models, Role Based Access Control (RBAC) is very useful and is used in many computer systems. Static Combination of Duty (SCD) and Dynamic Combination of Duty (DCD) constraints have been introduced recently for this model to handle dependent roles. These roles must be used together and can be considered as a contrary point of conflicting roles. In this paper, we propose several new types of SCD and DCD constraints. Also, we introduce strong dependent roles and define new groups of SCD constraints for these types of roles as SCD with common items and SCD with union items. In addition, we present an extension for SCD constraints in the presence of hierarchy.
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsAccess Control and Trust · Multi-Agent Systems and Negotiation · Cryptography and Data Security