Conference paper
D-algebra for composing access control policy decisions
Qun Ni, Elisa Bertino, et al.
ASIACCS 2009
Paper
Privacy-aware role-based access control
Abstract
A privacy-aware role-based access control (P-RBAC) model that extends RBAC to express complex privacy-related policies, including such features as conditions and obligations is discussed. P-RBAC is easy to deploy in systems already adopting RBAC, thus allowing seamless integration of access control and privacy policies. Conditional P-RBAC introduces permission assignment sets and complex Boolean expressions. It can express more complex conditions than those supported by core P-RBAC's condition language. Hierarchical P-RBAC introduces the notions of role hierarchy, object hierarchy, and purpose hierarchy. P-RBAC can represent privacy law rules with obligations using a rule from COPPA. P-RBAC features method that deals with obligations with subject binding instead of action binding.
Related
Conference paper
D-algebra for composing access control policy decisions
Qun Ni, Elisa Bertino, et al.
ASIACCS 2009
Conference paper
A Generative Policy Model for Connected and Autonomous Vehicles
Daniel Cunnington, Irene Manotas, et al.
ITSC 2019
Prathima Rao, Dan Lin, et al.
Computers and Security