Rbac-pat: A policy analysis tool for role based access control

MI Gofman, R Luo, AC Solomon, Y Zhang… - … Conference on Tools …, 2009 - Springer
MI Gofman, R Luo, AC Solomon, Y Zhang, P Yang, SD Stoller
International Conference on Tools and Algorithms for the Construction and …, 2009Springer
Abstract Role-Based Access Control (RBAC) has been widely used for expressing access
control policies. Administrative Role-Based Access Control (ARBAC) specifies how an
RBAC policy may be changed by each administrator. Because sequences of changes by
different administrators may interact in unintended ways, it is often difficult to fully understand
the effect of an ARBAC policy by simple inspection. This paper presents RBAC-PAT, a tool
for analyzing RBAC and ARBAC policies, which supports analysis of various properties …
Abstract
Role-Based Access Control (RBAC) has been widely used for expressing access control policies. Administrative Role-Based Access Control (ARBAC) specifies how an RBAC policy may be changed by each administrator. Because sequences of changes by different administrators may interact in unintended ways, it is often difficult to fully understand the effect of an ARBAC policy by simple inspection. This paper presents RBAC-PAT, a tool for analyzing RBAC and ARBAC policies, which supports analysis of various properties including reachability, availability, containment, weakest precondition, dead roles, and information flows.
Springer
Showing the best result for this search. See all results