Security analysis for temporal role based access control

Question

1. What are the contributions mentioned in the paper "Security analysis for temporal role based access control" ?

2. What are the future works in "Security analysis for temporal role based access control" ?

3. Why is RBAC used in enterprise security?

4. What is the way to handle the temporal role hierarchies?

Accepted Answer

In this paper, the authors consider security analysis for the Temporal RBAC ( TRBAC ), one of the extensions of RBAC.. The TRBAC considered in this paper allows temporal restrictions on roles themselves, user-permission assignments ( UA ), permission-role assignments ( PA ), as well as role hierarchies ( RH ).. Towards this end, the authors first propose a suitable administrative model that governs changes to temporal policies.. Then the authors propose their security analysis strategy, that essentially decomposes the temporal security analysis problem into smaller and more manageable RBAC security analysis sub-problems for which the existing RBAC security analysis tools can be employed.. The authors then evaluate them from a practical perspective by evaluating their performance using simulated data sets.

Accepted Answer

Their future work is to further enhance their analysis with respect to its performance, by providing an incremental security analysis.. The help of the recycled states will eventually facilitate the analysis by generating fewer new states when compared to a security analysis with an empty initial state space.

Accepted Answer

Due to its flexibility, ease of administration and intuitiveness, RBAC has been successfully adopted as a means to enforce security by many organizations.

Accepted Answer

Whether handling the temporal role hierarchies is done using the specification of DTRH, using dummy roles or delegation, none of the prior work on safety analysis considers RBAC models with temporal constraints on role hierarchies.

Accepted Answer

The complexity of the rule schedule approach algorithm depends not only on the number of roles and rules but also depends on the number of time slots, and the schedules (rule-role) that are assigned to the roles.

Accepted Answer

Definition 4. A dynamic temporal role hierarchy policy (r1 ≥s,weak r2) ∈ DTRHI between roles r1 and r2 is an inheritance-only weak temporal hierarchy relation, that is valid in the time slots specified by a schedule s.

Accepted Answer

While safety is one of the fundamental requirements to be analyzed, the security properties to be analyzed in this paper will be more comprehensive than those studied in prior literature.

Accepted Answer

due to the precondition structure and SA not capable of handling the can modify rule, SA is unable to analyze the Temporal Role Hierarchy subproblem.

Accepted Answer

In their analysis, the authors assume that srole (shierarchy, resp.) is assigned or revoked completely - no sub schedule assignments are allowed.

Accepted Answer

a role may change its level in the hierarchy, for example, a junior level role may be elevated to a higher level role during certain time periods.

Accepted Answer

The first model that embeds temporal data to access control is proposed by Bertino et al. [7] and called the Temporal Authorization Model (TAM).

Accepted Answer

Revocation Rules: A tuple (admin , srule ,Pos ,Neg, srole , r) ∈ t can revokep allows to update the permission to role assignment relation for the pair (p, r) as follows.

Security analysis for temporal role based access control

Chat with Paper

AI Agents for this Paper

Most frequently asked questions

1. What are the contributions mentioned in the paper "Security analysis for temporal role based access control" ?

2. What are the future works in "Security analysis for temporal role based access control" ?

3. Why is RBAC used in enterprise security?

4. What is the way to handle the temporal role hierarchies?

5. What is the complexity of the rule schedule approach algorithm?

6. What is the definition of a dynamic temporal role hierarchy policy?

7. What are the security properties to be analyzed in this paper?

8. Why is SA unable to analyze the Temporal Role Hierarchy subproblem?

9. What is the assumption that srole is assigned or revoked completely?

10. What is the role that can change its level in the hierarchy?

11. What is the first temporal model that is proposed by Bertino et al.?

12. what is the tuple's permission to role assignment?

Figures

Citations

Intelligent Performance-Aware Adaptation of Control Policies for Optimizing Banking Teller Process Using Machine Learning

A secure cloud-based solution for real-time monitoring and management of Internet of underwater things (IOUT)

How Fine-Grained?

Semantic privacy-preserving framework for electronic health record linkage

Using Hierarchical Timed Coloured Petri Nets in the formal study of TRBAC security policies

References

I and J

Mining association rules between sets of items in large databases

A. and Q

Role-based access control models

Proposed NIST standard for role-based access control

Related Papers (5)

Security Analysis of Administrative Role-Based Access Control Policies with Contextual Information

Analyzing and developing role-based access control models

Prox-RBAC: a proximity-based spatially aware RBAC

Security analysis in role-based access control

Enforcing spatial constraints for mobile RBAC systems