Jason Crampton - Royal Holloway, University of London

Sep 08, 2004

Size: 199.9MB

Download: Video Icon MP4 Video  
Watch in your Browser   Watch on Youtube Watch on YouTube

"Administrative Scope and Role-Based Administration"


Role-based access control (RBAC) has received considerable attention in recent years, resulting in several important theoretical models and increasing use in commercial products. Nevertheless, role-based administration, the use of role-based techniques to control RBAC systems, has been less widely studied. We will consider the problem of controlling the propagation of authorization information in computer systems in general, and in role-based systems in particular. We will then introduce the concept of administrative scope, an intuitive notion corresponding to the set of role(s) that can be controlled by a given role, and demonstrate how this can be used as the fundamental unit in the development of a family of administrative models for RBAC systems. We compare the characteristics of these models with the well-known ARBAC97 administrative model. We conclude by discussing how administrative scope can be used to provide an administrative framework for more complex RBAC models.

About the Speaker

Jason Crampton is a lecturer in the Information Security Group at Royal Holloway, University of London. His main research interests are role-based access control, with particular emphasis on role-based administration, authorization constraints, and the use of partial order theory in access control and information security. He is on the editorial board of the Information Security Technical Report and is an Associate Research Fellow at Birkbeck, University of London.

Unless otherwise noted, the security seminar is held on Wednesdays at 4:30P.M. STEW G52 (Suite 050B), West Lafayette Campus. More information...