Ravi S. Sandhu, Hal Feinstein  Home/Search
Context Related
| gmu.edu/confrnc/ncsc/ps_ve...b94rbac.ps Cached: PS.gz PS PDF This document uses CoBlitz to cache paper downloads. If your firewall is blocking outgoing connections to port 3125, you can use these links to download local copies.
Image Update HelpPS.gz PS PDF From: gmu.edu/conferen (more) (Enter author homepages) |
Rate this article:      (best)Comment on this article |
Abstract: This paper presents a reference architecture (or conceptual framework) for the specification and enforcement of role-based access control (RBAC). The architecture has three tiers in loose analogy to the well-known ANSI/SPARC architecture for database systems. (Although we take our inspiration from the database domain, we emphasize that our proposed RBAC architecture is germane to applications and systems in general and is not limited to databases per se.) The three tiers of the reference... (Update)
Context of citations to this paper: More
.... of roles for enforcing static and dynamic separation of duties has also been recognized [CW87, San88b, San91] Sandhu and Feinstein [SF94] have discussed a three tier architecture for implementing RBAC on diverse platforms, which have varying amount of direct support for...
...and roles is the same as the one between a policy and a mechanism. Two very important differences between groups and roles are as follows [118]: 1. Groups are essentially a discretionary mechanism whereas roles are non discretionary. The ability to assign permissions to a...
Cited by: More
Authorization Model for Strongly Distributed Information Systems - Cvrcek (2000) (Correct)
Separation of Duty in Role-Based Environments - Simon, Zurko (1997) (Correct)
Role-Based Access Control - Sandhu (1994) (Correct)
Similar documents (at the sentence level):
69.0%: A Three Tier Architecture For Role-Based Access Control - Sandhu, Feinstein (1994) (Correct)
16.4%: Role-Based Access Control: A Multi-Dimensional View - Sandhu, al. (1994) (Correct)
Active bibliography (related documents): More All
0.5: Unknown - (Correct)
0.3: Data Security - Samarati, Jajodia (1999) (Correct)
0.3: Indexing Valid Time Databases Via B+-trees - The MAP21 Approach - Nascimento, Dunham (1997) (Correct)
Similar documents based on text: More All
0.4: Role-Based Access Control Models - Sandhu, Coyne, Feinstein, Youman (1996) (Correct)
0.3: Role Hierarchies and Constraints for Lattice-Based Access Controls - Sandhu (1996) (Correct)
0.3: The ARBAC97 Model for Role-Based Administration of Roles.. - Sandhu, Bhamidipati (1997) (Correct)
Related documents from co-citation: More All
5: Separation of Duties in Computerized Information Systems - Sandhu - 1991
4: A comparison of Commercial and Military Computer Security Policies (context) - Clark, Wilson - 1987
3: Role-based access controls - Ferraiolo, Kuhn - 1992
BibTeX entry: (Update)
Ravi S. Sandhu and Hal L. Feinstein. A three tier architecture for role-based access control. In 17th NIST-NCSC National Computer Security Conference, Baltimore, MD, October 11-14 1994. http://citeseer.ist.psu.edu/sandhu94three.html More
@inproceedings{ sandhu94three,
author = "R. S. Sandhu and H. Feinstein",
title = "A Three Tier Architecture for Role-Based Access Control",
booktitle = "Proc. 17th {NIST}-{NCSC} National Computer Security Conference",
pages = "34--46",
year = "1994",
url = "citeseer.ist.psu.edu/sandhu94three.html" }
Citations (may not include all citations):265 Secure computer systems: Unified exposition and Multics inte.. (context) - Bell, LaPadula - 1975
173 A comparison of commercial and military computer security po.. (context) - Clark, Wilson - 1987
124 Protection in operating systems (context) - Harrison, Ruzzo et al. - 1976
118 Role-based access controls - Ferraiolo, Kuhn - 1992
82 Department of Defense Trusted Computer Systems Evaluation Cr.. (context) - Defense, Security - 1985
52 The typed access matrix model - Sandhu - 1992
29 Separation of duties in computerized information systems - Sandhu - 1991
27 Transaction control expressions for separation of duties - Sandhu - 1988
26 Naming and grouping privileges to simplify security manageme.. (context) - Baldwin - 1990
17 An examination of federal and commercial access control poli.. (context) - Ferraiolo, Gilbert et al. - 1993
12 Role-based application design and enforcement (context) - Thomsen - 1991
12 SPARC DBMS framework: Report of the study group on data base.. (context) - Tsichritizis, Klug et al. - 1978
10 The NTree: A two dimension partial order for protection grou.. - Sandhu - 1988
8 A user-role based data security approach (context) - Ting - 1988
8 A TCB subset for integrity and role-based access control (context) - Sterne - 1992
7 Role-based security in data base management systems (context) - Lochovsky, Woo - 1988
5 Access control policies: Some unanswered question (context) - Lunt - 1988
4 Federal Criteria for Information Technology Security Worksho.. (context) - of, Technology et al. - 1993
4 Federal Criteria for Information Technology Security (context) - of, Technology et al. - 1992
4 Security issues in the database language sql - Polk, Bassham - 1993
3 ORACLE7 Server SQL Language Reference Manual (context) - Corporation - 1992
2 Introduction to access controls (context) - Murray - 1993
2 General Security Requirements for Cryptographic Module (context) - of, Technology - 1993
The graph only includes citing articles where the year of publication is known.
Documents on the same site (http://www.list.gmu.edu/conferen.htm): More
Supporting Timing-Channel Free Computations In Multilevel .. - Sandhu, Thomas, Jajodia (1991) (Correct)
Task-Based Authorization: A Paradigm For Flexible And.. - Thomas, Sandhu (1993) (Correct)
Discretionary Access Control In Object-Oriented Databases.. - Thomas, Sandhu (1993) (Correct)
Online articles have much greater impact More about CiteSeer.IST Add search form to your site Submit documents Feedback
CiteSeer.IST - Copyright Penn State and NEC