Article

Free access

The RSL99 language for role-based separation of duty constraints

Authors:

Gail-Joon Ahn,

Ravi SandhuAuthors Info & Claims

RBAC '99: Proceedings of the fourth ACM workshop on Role-based access control

Pages 43 - 54

https://doi.org/10.1145/319171.319176

Published: 28 October 1999 Publication History

PDF eReader

References

[1]

Robert W. Baldwin. Naming and grouping privileges to simplify security management in large database. In Proceedings of IEEE Symposium on Research in Security and privacy, pages 61-70, Oakland, CA, April 1990.

Crossref

Google Scholar

[2]

Fang Chen and Ravi Sandhu. Constraints for role based access control. In Proceedings of 1st A CM Workshop on Role-Based Access Control, pages 39-46, Gaithersburg, MD, November 1995.

Digital Library

Google Scholar

[3]

D.D. Clark and D. R. Wilson. A comparision of commercial and military computer security plocies. In Proceedings of IEEE Symposium on Security and Privacy, pages 184- 194, April 1987.

Crossref

Google Scholar

[4]

David F. Ferraiolo, John F. Barkley, and D. Richard Kuhn. A role based access control model and reference implementation within a corporate intranet. A CM Transactions on Information and Systems Security, 2(1):34-64, February 1999.

Digital Library

Google Scholar

[5]

David Ferraiolo, Janet Cugini, and Richard Kuhn. Role-based access control (RBAC): Features and motivations. In Proceedings of 11th Annual Computer Security Application Conference, pages 241-48, New Orleans, LA, December 11-15 1995.

Google Scholar

[6]

Virgil D. Gligor, Serban I. Gavrila, and David Ferraiolo. On the formal definition of separation-of-duty policies and their composition. In Proceedings of IEEE Symposium on Research in Security and Privacy, pages 172-183, Oakland, CA, May 1998.

Crossref

Google Scholar

[7]

D. Richard Kuhn. Mutual exclusion of roles as a means of implementing separation of duty in role-based access control systems. In Proceedings of 2nd A CM Workshop on Role- Based Access Control, Fairfax, VA, October 1997.

Digital Library

Google Scholar

[8]

Matunda Nyanchama and Sylvia Osborn. The role graph model and conflict of interest. A CM Transactions on Information and Systems Security, 2(1):3-33, February 1999.

Digital Library

Google Scholar

[9]

M.N. Nash and K.R. Poland. Some conundrums concerning separation of duty. In Proceedings o/ IEEE Symposium on Security and Privacy, pages 201-207, Oakland, CA, May 1990.

Crossref

Google Scholar

[10]

Ravi Sandhu. Transaction control expressions for separation of duties. In Proceedings of 4th Aerospace Computer Security Conference, pages 282-286, Orlando, FL, December 1988.

Crossref

Google Scholar

[11]

Ravi S. Sandhu. Lattice-based access control models. IEEE Computer, 26(11):9-19, November 1993.

Digital Library

Google Scholar

[12]

Ravi S. Sandhu. Role hierarchies and constraints for lattice-based access controls. In Elisa Bertino, editor, Proc. Fourth European Symposium on Research in Computer Security. Springer-Verlag, Rome, Italy, 1996. Published as Lecture Notes in Computer Science, Computer Security-ESORICS96.

Digital Library

Google Scholar

[13]

Ravi Sandhu. Rationale for the RBAC96 family of access control models. In Proceedings of the 1st A CM Workshop on Role- Based Access Control. ACM, 1997.

Digital Library

Google Scholar

[14]

Ravi S. Sandhu, Edward J. Coyne, Hal L. Feinstein, and Charles E. Youman. Rolebased access control models. IEEE Computer, 29(2):38-47, February 1996.

Digital Library

Google Scholar

[15]

R.T. Simon and M. E. Zurko. Separation of duty in role-based environments. In Proceedings of IEEE Computer Security Foundations Workshop, pages 183-194, Rockport, MA, December 1997.

Digital Library

Google Scholar

[16]

Roshan Thomas and Ravi S. Sandhu. Conceptual foundations for a model of task-based authorizations. In Proceedings of IEEE Computer Security Foundations Workshop, pages 66-79, Franconia, NH, June 1994.

Crossref

Google Scholar

Cited By

View all

Nguyen DAutrel FBouabdallah ADoyen G(2023)A Robust Approach for the Detection and Prevention of Conflicts in I2NSF Security PoliciesNOMS 2023-2023 IEEE/IFIP Network Operations and Management Symposium10.1109/NOMS56928.2023.10154304(1-7)Online publication date: 8-May-2023
https://doi.org/10.1109/NOMS56928.2023.10154304
Wang HCao JZhang YWang HCao JZhang Y(2020)Using RBAC to Secure Payment Process in CloudAccess Control Management in Cloud Environments10.1007/978-3-030-31729-4_6(117-138)Online publication date: 30-Sep-2020
https://doi.org/10.1007/978-3-030-31729-4_6
Berger BMaeder CWete Nguempnang RSohr KRubio-Medrano CKerschbaum FMashatan ANiu JLee A(2019)Towards Effective Verification of Multi-Model Access Control PropertiesProceedings of the 24th ACM Symposium on Access Control Models and Technologies10.1145/3322431.3325105(149-160)Online publication date: 28-May-2019
https://dl.acm.org/doi/10.1145/3322431.3325105
Show More Cited By

Index Terms

The RSL99 language for role-based separation of duty constraints

Recommendations

Role-based authorization constraints specification

Constraints are an important aspect of role-based access control (RBAC) and are often regarded as one of the principal motivations behind RBAC. Although the importance of contraints in RBAC has been recogni zed for a long time, they have not recieved ...
Dependencies and separation of duty constraints in GTRBAC
SACMAT '03: Proceedings of the eighth ACM symposium on Access control models and technologies

A Generalized Temporal Role Based Access Control (GTRBAC) model that captures an exhaustive set of temporal constraint needs for access control has recently been proposed. GTRBAC's language constructs allow one to specify various temporal constraints on ...
Enforcement of separation of duty constraints in attribute-based access control
Abstract
While the verification of separation of duty (SoD) constraints on attribute based access control (ABAC) systems has been defined and examined in existing works, it still remains an open problem since the existing approaches are either ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

RBAC '99: Proceedings of the fourth ACM workshop on Role-based access control

October 1999

160 pages

ISBN:1581131801

DOI:10.1145/319171

Chairmen:
Charles Youman
Blue Cross Blue Shield
,
Sylvia Osborn
Univ. of Western Ontario, London, Ont., Canada

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 28 October 1999

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Qualifiers

Article

Conference

RBAC99

Sponsor:

SIGSAC

RBAC99: Fourth ACM Workshop on Role-Based Access Control

October 28 - 29, 1999

Virginia, Fairfax, USA

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

90
Total Citations
View Citations
646
Total Downloads

Downloads (Last 12 months)42
Downloads (Last 6 weeks)5

Reflects downloads up to 06 Jan 2025

Other Metrics

View Author Metrics

Citations

Cited By

View all

Nguyen DAutrel FBouabdallah ADoyen G(2023)A Robust Approach for the Detection and Prevention of Conflicts in I2NSF Security PoliciesNOMS 2023-2023 IEEE/IFIP Network Operations and Management Symposium10.1109/NOMS56928.2023.10154304(1-7)Online publication date: 8-May-2023
https://doi.org/10.1109/NOMS56928.2023.10154304
Wang HCao JZhang YWang HCao JZhang Y(2020)Using RBAC to Secure Payment Process in CloudAccess Control Management in Cloud Environments10.1007/978-3-030-31729-4_6(117-138)Online publication date: 30-Sep-2020
https://doi.org/10.1007/978-3-030-31729-4_6
Berger BMaeder CWete Nguempnang RSohr KRubio-Medrano CKerschbaum FMashatan ANiu JLee A(2019)Towards Effective Verification of Multi-Model Access Control PropertiesProceedings of the 24th ACM Symposium on Access Control Models and Technologies10.1145/3322431.3325105(149-160)Online publication date: 28-May-2019
https://dl.acm.org/doi/10.1145/3322431.3325105
Opara ASong YCho SChung L(2019)Representing cloud security and privacy policies and detecting potential problems2019 IEEE 5th International Conference on Big Data Intelligence and Computing (DATACOM)10.1109/DataCom.2019.00040(214-221)Online publication date: 18-Nov-2019
https://doi.org/10.1109/DataCom.2019.00040
Kumar AKumar A(2018)Business Process SecurityBusiness Process Management10.4324/9781315646749-8(157-181)Online publication date: 2-Feb-2018
https://doi.org/10.4324/9781315646749-8
Cherif AImine A(2016)Optimistic Access Control for Collaborative ApplicationsInnovative Solutions for Access Control Management10.4018/978-1-5225-0448-1.ch005(125-158)Online publication date: 2016
https://doi.org/10.4018/978-1-5225-0448-1.ch005
Rizvi SFong PBertino ESandhu RPretschner A(2016)Interoperability of Relationship- and Role-Based Access ControlProceedings of the Sixth ACM Conference on Data and Application Security and Privacy10.1145/2857705.2857706(231-242)Online publication date: 9-Mar-2016
https://dl.acm.org/doi/10.1145/2857705.2857706
Parameswaran NMaheshwari P(2016)Event models from policy descriptions2016 2nd International Conference on Next Generation Computing Technologies (NGCT)10.1109/NGCT.2016.7877429(283-290)Online publication date: Oct-2016
https://doi.org/10.1109/NGCT.2016.7877429
Cotrini CWeghorn TBasin DClavel M(2015)Analyzing First-Order Role Based Access ControlProceedings of the 2015 IEEE 28th Computer Security Foundations Symposium10.1109/CSF.2015.8(3-17)Online publication date: 13-Jul-2015
https://dl.acm.org/doi/10.1109/CSF.2015.8
(2014)Policy-Based Governance of Complex Distributed Systems: What Past Trends Can Teach Us about Future RequirementsAdaptive, Dynamic, and Resilient Systems10.1201/b17131-21(273-298)Online publication date: 23-Jun-2014
https://doi.org/10.1201/b17131-21
Show More Cited By

View Options

View options

PDF

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Cited By

Index Terms

Recommendations

Role-based authorization constraints specification

Dependencies and separation of duty constraints in GTRBAC

Enforcement of separation of duty constraints in attribute-based access control