Changes between Version 55 and Version 56 of Internal/Rbac/OrbitRbacDesign
- Timestamp:
- Sep 11, 2006, 3:43:55 PM (18 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
Internal/Rbac/OrbitRbacDesign
v55 v56 5 5 === RBAC Research for Implementation === 6 6 There is one book [[http://www.amazon.com/gp/product/1580533701/ FKC03]] and a surprisingly large number of articles, papers, PhD theses, and web sites that touch on aspects of the design and implemenation of role-based access control for ORBIT. Many of these sources are theoretical in nature, although some of the theoretical work includes implementation of tools to specify and check user-role assignments and constraints. Some of the papers address administrative issues. The following sources discuss RBAC implementation issues. 7 8 Ferraiolo, Barkley, and Kuhn's paper discusses RBAC including dynamic separation of duty and their implementation of the NIST RBAC model RBAC/Web within a corporate intranet 9 [[http://orbit-lab.org/attachment/wiki/Internal/Rbac/RbacResources/p34-ferraiolo.pdf FBK99]]. 7 10 8 11 Ahn and Hong discuss a Linux implementation that uses UNIX groups to implement Static Separation of Duty [[http://orbit-lab.org/attachment/wiki/Internal/Rbac/RbacResources/WOSIS2004.pdf AH04]].
