Proposal of a Dynamic Access Control Model Based on Roles and Delegation for Intelligent Systems Using Realm

Autor: Samuel Ouya, Jeanne Roux Ngo Bilong, Gervais Mendy, Cheikhane Seyed, Ibrahima Diop Gaye
Rok vydání: 2019
Předmět:
Zdroj: The Challenges of the Digital Transformation in Education ISBN: 9783030119317
DOI: 10.1007/978-3-030-11932-4_38
Popis: Delegation is an element of administration that remains important in access control systems. Although widely used, delegation is very little taken into account in security policies because of its complexity. The models proposed so far are extensions of the RBAC model. Role-based access controls documentation does not reveals sufficient studies of delegation requirements for role and task. To address this problem, we propose a hybrid model called Role and delegation Based Dynamic Access Control (RDBDAC), which dynamically manage user role updates and task delegation, taking into account parameters such as the level of trust and temporal context. We show that our approach is flexible and sufficient to handle all delegation requirements. For a better expressivity of our model, we use non-monotonic logic T-JClassicδe which make it possible to specify non-monotonic authorizations and a better representation of the temporal aspects specific to a given delegation. For the model application, we used Realm, a role-based access controls management tool. However, it has some shortcomings for information system administrators in terms of dynamically updating roles assigned to different actors. To solve this problem, we interfaced a middleware between the Realm tool and the users, to facilitate the management of the update of the roles on a virtual university platform.
Databáze: OpenAIRE
Externí odkaz: