Sciweavers

CCS
2007
ACM

Efficient policy analysis for administrative role based access control

13 years 7 months ago
Efficient policy analysis for administrative role based access control
Administrative RBAC (ARBAC) policies specify how Role-Based Access Control (RBAC) policies may be changed by each administrator. It is often difficult to fully understand the effect of an ARBAC policy by simple inspection, because sequences of changes by different administrators may interact in unexpected ways. ARBAC policy analysis algorithms can help by answering questions, such as user-role reachability, which asks whether a given user can be assigned to given roles by given administrators. This problem is intractable in general. This paper identifies classes of policies of practical interest, develops analysis algorithms for them, and analyzes their parameterized complexity, showing that the algorithms may have high complexity with respect to some parameter k characterizing the hardness of the input (such that k is often small in practice) but have polynomial complexity in terms of the overall input size when the value of k is fixed. Categories and Subject Descriptors: K.6.5 [Mana...
Scott D. Stoller, Ping Yang, C. R. Ramakrishnan, M
Added 12 Aug 2010
Updated 12 Aug 2010
Type Conference
Year 2007
Where CCS
Authors Scott D. Stoller, Ping Yang, C. R. Ramakrishnan, Mikhail I. Gofman
Comments (0)