Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Managing Role/Permission Relationships Using Object Access Types

Published

Author(s)

John Barkley, Anthony V. Cincotta

Abstract

The role metaphor in Role Based Access Control (RBAC) is particularly powerful in its ability to express access policy in terms of the way in which administrators view organizations. Much of the effort in providing administrative tools for RBAC has been devoted to tools for associating users with roles and roles with roles. This paper introduces the concept of an "Object Access Type" and describes the tool "RGP-Admin" for administering associations between roles and permissions using Object Access Types. RGP-Admin is applicable to most RBAC mechanisms and Access Control List mechanisms which support groups. A prototype demonstration of RGPAdmin was developed to illustrate how Object Access Types are used to manage associations between Windows NT groups, representing roles, and file permissions within the Windows NT File System.
Proceedings Title
Proceedings of the 3rd ACM Workshop on Role-Based Access Control (RBAC '98)
Conference Dates
October 22-23, 1998
Conference Location
Fairfax, VA
Conference Title
3rd ACM Workshop on Role-Based Access Control (RBAC '98)

Keywords

access control, Object Access Type, permission, RBAC, Role-Based Access Control

Citation

Barkley, J. and Cincotta, A. (1998), Managing Role/Permission Relationships Using Object Access Types, Proceedings of the 3rd ACM Workshop on Role-Based Access Control (RBAC '98), Fairfax, VA, [online], https://doi.org/10.1145/286884.286901 (Accessed December 6, 2024)

Issues

If you have any questions about this publication or are having problems accessing it, please contact reflib@nist.gov.

Created October 23, 1998, Updated November 10, 2018