TY - GEN
T1 - Trust-based dynamic RBAC
AU - Lavi, Tamir
AU - Gudes, Ehud
N1 - Publisher Copyright:
Copyright © 2016 by SCITEPRESS - Science and Technology Publications, Lda.
PY - 2016/1/1
Y1 - 2016/1/1
N2 - A prominent feature of almost every computerized system is the presence of an acceb control module. The Role Based Acceb Control (RBAC) model is among the most popular in both academic research and in practice, within actual implementation of many applications and computer infrastructures. The RBAC model simplifies the way that a system administrator controls the abignment of permibions to individuals by abigning permibions to roles and roles to users. The growth in web applications which enable the acceb of world-wide and unknown users, expose these applications to various attacks. This led few researchers to suggest ways to incorporate trust within RBAC to achieve even better control over the abignment of users to roles, and permibions within roles, based on the user trust level. In this work, we present a new trust-based RBAC model which improves and refines the abignment of permibions to roles with awareneb of the user trust and reputation. After describing the basic model, called TDRBAC for Trust-based Dynamic RBAC, we describe ways to deal with ibues like privacy-preservation and delegation of roles with the consideration of user's trust.
AB - A prominent feature of almost every computerized system is the presence of an acceb control module. The Role Based Acceb Control (RBAC) model is among the most popular in both academic research and in practice, within actual implementation of many applications and computer infrastructures. The RBAC model simplifies the way that a system administrator controls the abignment of permibions to individuals by abigning permibions to roles and roles to users. The growth in web applications which enable the acceb of world-wide and unknown users, expose these applications to various attacks. This led few researchers to suggest ways to incorporate trust within RBAC to achieve even better control over the abignment of users to roles, and permibions within roles, based on the user trust level. In this work, we present a new trust-based RBAC model which improves and refines the abignment of permibions to roles with awareneb of the user trust and reputation. After describing the basic model, called TDRBAC for Trust-based Dynamic RBAC, we describe ways to deal with ibues like privacy-preservation and delegation of roles with the consideration of user's trust.
KW - Privacy-Preservation
KW - RBAC
KW - Role Delegation
KW - Trust-Based Acceb Control
UR - http://www.scopus.com/inward/record.url?scp=84968777300&partnerID=8YFLogxK
U2 - 10.5220/0005687503170324
DO - 10.5220/0005687503170324
M3 - Conference contribution
AN - SCOPUS:84968777300
T3 - ICISSP 2016 - Proceedings of the 2nd International Conference on Information Systems Security and Privacy
SP - 317
EP - 324
BT - ICISSP 2016 - Proceedings of the 2nd International Conference on Information Systems Security and Privacy
A2 - Camp, Olivier
A2 - Furnell, Steven
A2 - Mori, Paolo
PB - SciTePress
T2 - 2nd International Conference on Information Systems Security and Privacy, ICISSP 2016
Y2 - 19 February 2016 through 21 February 2016
ER -