Encyclopedia of Database Systems

Living Edition
| Editors: Ling Liu, M. Tamer Özsu

Administration Model for RBAC

  • Yue ZhangEmail author
  • James B. D. Joshi
Living reference work entry
DOI: https://doi.org/10.1007/978-1-4899-7993-3_1507-2

Synonyms

Definition

The central ideal of administration model for RBAC is to use the role itself to manage roles. There are two well-known families of administration RBAC models.

Administrative RBAC

The Administrative RBAC family of models known as ARBAC97 [3] introduces administrative roles that are used to manage the regular roles. These roles can form a role hierarchy and may have constraints. ARBAC97 consists of three administrative models, the user-role assignment (URA97) model, the permission-role assignment (PRA97) model, and the role-role administration (RRA97) model. URA97 defines which administrative roles can assign which users to which regular roles by means of the relation: can_assign. Similarly, PRA97 defines which administrative roles can assign which permissions to which regular roles by means of the relation: can_assignp. Each of these relations also has a counterpart for revoking the assignment (e.g., can_revoke). RRA97 defines which administrative...

This is a preview of subscription content, log in to check access.

Recommended Reading

  1. 1.
    Crampton J, Loizou G. Administrative scope: a foundation for role-based administrative models. ACM Trans Inf Syst Secur. 2003;6(2):201–31.CrossRefGoogle Scholar
  2. 2.
    Oh S, Sandhu R. A model for role administration using organization structure. In: Proceedings of the 7th ACM symposium on access control models and technologies, 2002. p. 155–62.Google Scholar
  3. 3.
    Sandhu R, Bhamidipati V, Munawer Q. The ARBAC97 model for role-based administration of roles. ACM Trans Inf Syst Secur. 1999;2(1):105–35.CrossRefGoogle Scholar
  4. 4.
    Sandhu R, Munawer Q. The ARBAC99 model for administration of roles (1999). In: Proceedings of the 15th computer security applications conference, Arizona, 1999. p. 229.Google Scholar
  5. 5.
    Zhang Y, James B, Joshi D. SARBAC07: scoped administration model for RBAC with hybrid hierarchy. In: Proceedings of the 3rd international symposium on information assurance and security, 2007, p. 149–54.Google Scholar
  6. 6.
    Zhang Y, Joshi JBD. ARBAC07: a role based administration model for RBAC with hybrid hierarchy. In: Proceedings of the IEEE international conference information reuse and integration, 2007, p. 196–202.Google Scholar

Copyright information

© Springer Science+Business Media New York 2014

Authors and Affiliations

  1. 1.University of PittsburghPittsburghUSA

Section editors and affiliations

  • Elena Ferrari
    • 1
  1. 1.DiSTAUniv. of InsubriaVareseItaly