Barkley, J.
and Cincotta, A.
(1998),
Managing Role/Permission Relationships Using Object Access Types, Proceedings of the 3rd ACM Workshop on Role-Based Access Control (RBAC '98), Fairfax, VA, [online], https://doi.org/10.1145/286884.286901
(Accessed April 24, 2024)
Official websites use .gov
A .gov website belongs to an official government organization in the United States.
Secure .gov websites use HTTPS
A lock (
) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.
Managing Role/Permission Relationships Using Object Access Types
Published
Author(s)
, Anthony V. Cincotta
Abstract
The role metaphor in Role Based Access Control (RBAC) is particularly powerful in its ability to express access policy in terms of the way in which administrators view organizations. Much of the effort in providing administrative tools for RBAC has been devoted to tools for associating users with roles and roles with roles. This paper introduces the concept of an "Object Access Type" and describes the tool "RGP-Admin" for administering associations between roles and permissions using Object Access Types. RGP-Admin is applicable to most RBAC mechanisms and Access Control List mechanisms which support groups. A prototype demonstration of RGPAdmin was developed to illustrate how Object Access Types are used to manage associations between Windows NT groups, representing roles, and file permissions within the Windows NT File System.Proceedings Title
Proceedings of the 3rd ACM Workshop on Role-Based Access Control (RBAC '98)
Conference Dates
October 22-23, 1998
Conference Location
Fairfax, VA
Conference Title
3rd ACM Workshop on Role-Based Access Control (RBAC '98)
Pub Type
Conferences
Download Paper
Keywords
access control, Object Access Type, permission, RBAC, Role-Based Access Control
Citation
Created October 23, 1998, Updated November 10, 2018