|
Title:
|
A DESIGN PATTERN OF INCORPORATING ATTRIBUTES INTO ROLE-BASED ACCESS CONTROL |
|
Author(s):
|
Ying Jin, Jose Reyes, Zhimin Cheng |
|
ISBN:
|
978-989-8533-20-3 |
|
Editors:
|
Hans Weghorn |
|
Year:
|
2013 |
|
Edition:
|
Single |
|
Keywords:
|
Access control, Design pattern, Database management systems |
|
Type:
|
Full Paper |
|
First Page:
|
107 |
|
Last Page:
|
114 |
|
Language:
|
English |
|
Cover:
|
|
|
Full Contents:
|
click to dowload 
|
|
Paper Abstract:
|
Role-based Access Control (RBAC) and attribute-based access control are two types of access control approaches to manage resource authorization and usage. Both approaches are used by many applications, while each approach has unavoidable limitations. This paper describes our approach of integrate them, namely ARBAC, by incorporating attributes into role-based access control, to take the advantages of both approaches. Users are categorized into roles. Different users in the same role are differentiated by attributes. We present our approach of using underlying database management systems native support to implement ARBAC. Our goal is to release the burden of application level programing, while producing secured software. One contribution of this paper is providing a practical implementation of incorporating attributes into role-based access control. Another contribution is our presentation of a software design pattern to generalize our approach, in order to facilitate software reuse. |
|
|
|
|
|
|
