Access Control Administration Policies
Administration policies regulate who can modify the authorization state, that is, who has the right to grant and revoke authorizations.
Authorization management is a an important issue when dealing with access control and, as such, research on this topic is strongly related to the developments in access control. A milestone in the field is represented by the research carried out in the 1970s at IBM in the framework of the System R project. In particular, the work by Griffiths and Wade  defines a semantics for authorization revocation, which had greatly influenced the way in which authorization revocation has been implemented in commercial Relational DBMSs. Administrative policies for Object-oriented DBMSs have been studied in . Later on, some extensions to the System R access control administration model, have been defined , with the aim of making it more...
- 1.Atluri V., Bertino E., Ferrari E., and Mazzoleni P. Supporting delegation in secure workflow management systems. In Proc. 17th IFIP WG 11.3 Conf. on Data and Application Security, 2003, pp. 190–202.Google Scholar
- 3.Bertino E. and Ferrari E. 1997.Administration policies in a multipolicy authorization system. In Proc. 11th IFIP WG 11.3 Conference on Database Security, pp. 341–355.Google Scholar
- 7.Database Languages – SQL,ISO/IEC 9075-*, 2003.Google Scholar
- 12.Seitz L., Rissanen E., Sandholm T., Sadighi Firozabadi B., and Mulmo O. Policy Administration control and delegation using XACML and delegent. In Proc. 6th IEEE/ACM Int. Workshop on Grid Computing, pp. 49–54.2005,Google Scholar