To search, Click below search items. |
| All Published Papers Search Service |
|
|
|
Title |
MMOR: A Model for Managing Overlapping Security Roles |
|
Author |
Ahmad Mousa Altamimi |
| Citation |
Vol. 26 No. 6 pp. 57-62 |
|
Abstract |
One of the most important features of any information system is the protection of data against unauthorized disclosure, while at the same time ensuring accessibility by authorized users whenever needed. Such protection ranges from simple authentication to the complex authorization required for sensitive information. To achieve these security considerations, security policies are defined, usually by the system administrator, for controlling and monitoring users accessing. These policies consist of a series of constraints associated with a set of roles that, in turn, may be assigned to one or more users according to their duties. In most cases, user¡¯s roles do not overlap or con?ict. However, in a rapidly changing systems, a user would likely have more than one role, and some of these roles may very well overlap. In this paper, we present an abstract hierarchy nature security model (MMOR) that has been specifically designed for managing overlapping security roles to ensure that they are mutually consistent. In short, MMOR organizes roles into a hierarchy structure to support a more expressive representation and then extracts the highest non-con?icting roles amongst the user¡¯s assigned roles. To underscore the practical visibility of the proposed approach, an implementation is provided. |
|
Keywords |
Security Policies, Privacy, Overlapping, Roles Hierarchy. |
|
URL |
