A Role and Activity Based Access Control Model for University Identity and Access Management System
Although RBAC model has received broad support as a generalized access control solution, it has several innate limitations. We propose a Role and Activity Based Access Control model called R-ABAC, which extends the traditional RBAC model with the notion of participation, act and activity. An activity is an abstraction of the application environment, and organizes participations and acts as a digraph for expressing dependency of activity steps, as well as containing rich context information such as time, location and system status. An implementation of R-ABAC model has been applied to a university unified identity and access management system (UIAMS).
Shuliang Zheng Dongxing Jiang Qixin Liu
Computer and Information Management Center of Tsinghua University
国际会议
The Fifth International Conference on Information Assurance and Security(第五届信息保障与安全国际会议)
西安
英文
487-490
2009-08-18(万方平台首次上网日期,不代表论文的发表时间)