Académique Documents
Professionnel Documents
Culture Documents
(For
research HOSPITAL CLINIC
purpose)
(For insurance claim)
INSURANCE
COMPANY
• SP = {sp1, sp2…, spn} is a set of n spatial purpose • assignedLOC_sp (sp) → 2LLOC, one-to-many
that describes the space covered by the purpose. mapping of spatial purposes onto the set of logical
locations. Formally: assignedLOC_sp (sp) {lloc
We also include some administrative operations LLOC | (sp, lloc) SA}.
for the proposed model to add/delete user, add/delete
role, assign/de-assign user-to-role assignment and • assignedSP_loc → 2SP, one-to-many mapping of a
permission-to-role assignment. spatial purpose onto the set of logical locations.
Formally assignedSP_loc (lloc) {sp SP | (sp,
• User-Role Assignment Relation: UA USERS x lloc) SA}.
SPR. Our proposed policy is a tuple in the form <s, r,
• Role-Permission Assignment Relation: PA op, o, ftime, etime, l> which semantically denotes a
PRMS x SPR. request by a user in a subject role s with a role r to
perform an operation op on a resource in object role
• Purpose-Location Assignment: SA P x LLOC. o under the temporal condition ftime and etime,
location condition l.
• Spatial Purpose Role-Spatial Purpose Assignment:
SPA SPR x SP.
6. CONCLUSION AND FUTURE WORK
• Spatial Domain-Spatial Purpose Assignment:
SDOM_SP SDOMi x SDOMj x SP. In this paper, we have proposed an extension of
RBAC by introducing the notion of purpose-roles.
• Spatial Purpose-Location Assignment: SA SP x We argue that notion of purposes must be defined in
LLOC. access control policies as it helps the organizations to
• subject_user (s:SUBECT) → (u:USERS), one-to- know which user can perform what operations on
one mapping of a subject s onto the subject’s which object for what purpose. A purpose tree has
associated user u. been given for purpose role management. We have
presented the proposed policy syntax that can be
• subject_roles (s:SUBJECT) → 2SPR, one-to many used to define purpose-oriented access control
mapping of a subject onto a set of spatial roles. policies. We also explained our understanding of the
Formally: subject_roles {spr SPR | concept domain and presented the extended RBAC
(subject_user(s), spr) UA}. architecture for multi-domain environment.
• assigned_users (SPR) → 2USERS, one-to many The basics of extended RBAC function and
mapping of a role onto a set of users. Formally: administrative operations have been given. Our
assigned_users(SPR) ` {u USERS | (u, spr) future work makes use of the extended functions and
UA}. allows administrator to define purpose-oriented roles
to secure organizational resources that can be
• assigned_prms (spr:SPR) → 2PRMS, one-to-many accessed from anywhere, anytime in a distributed
mapping of a spatial role onto a set of permissions. multi-domain environment.
Formally: assigned_prms (spr) {prms PRMS | As for the role management, we do not consider
(prms, spr) PA}. hierarchical relationship among roles and policies.
Also separation of duty including both static and
• prms_roles (prms:PRMS) → 2SPR, one-to-many dynamic and special constraints like cardinality
mapping of permission onto a set of spatial roles.
constraints implementation needs to be discussed. symposium on Operating systems design and
We leave these issues for our future work. implementation, pp. 265-278, (1999).
[13] S. Chandaran and J.B.D Joshi: LoT-RBAC: A
7. REFERENCES location and time-based RBAC model,
Proceedings of the 6th International
[1] Open Clinic, Decision Support Systems, Conference on Web Information Systems
http://www.openclinical.org/dss.html. Last Engineering (WISE’05), pp. 361-375, New
accessed on: January 22, 2007. York, USA, (2005).
[2] P. Wohlmacher, P. Pharow: Applications in [14] E. Bertino, B. Catania, M.L. Damiani and P.
health care using public-key certificates and Persasca: GEO-RBAC: A Spatially
attribute certificates, Annual computer AwareRBAC, 10th Symposium on Access
security applications conference, pp. 128, Control Models and Technologies
ISBN: 0-7695-0859-6, (2000). (SACMAT'05), Stockholm, Sweden, pp. 29-
[3] M.N. Tahir: A secure online medical 37, (2005).
information system in distributed and [15] F. Hansen and V. Oleshchuk: Spatial role-
heterogeneous computing environment, based access control model for wireless
Information & Security: An International networks, 58th IEEE Vehicular Technology
Journal, vol. 15, No.2, pp. 211-215, (2004). Conference (VTC’03), vol. 3, pp. 2093 –
[4] A. Hess and K.E. Seamons: Access control 2097, (2003).
model for dynamic client-side content, [16] W. Qiang, H. Jin, X. Shi, D. Zou, and H.
Proceedings of the eighth ACM symposium Zhang: RB-GACA: A rbac based grid access
on Access control models and technologies, control architecture, GCC 2003, LNCS 3032,
Como, Italy, pp. 207 – 216. ISBN: 1-58113- pp. 487–494, (2004).
681-1, (2003). [17] H. Jin, W. Qiang, X. Shi and D. Zou: RB-
[5] M.N. Tahir: Architectural representation of c- GACA: A rbac based grid access control
rbac, contextual role-based access control, architecture, International Journal of Grid and
Journal of Privacy Technologies, (paper under Utility Computing, vol. 1, no. 1, pp. 61-70,
review). (2005).
[6] D. Ferraiolo and R. Kuhn: Role-based access [18] M. Covington, M. Moyer and M. Ahmad:
control, Proceedings of 15th National Computer Generalized role-based access control for
Security Conference, USA, (1992). securing future applications, Proceedings of
[7] R. Sandhu, R. Coyne, H. Feinstein and C. the 23rd National Information Systems
Youman: Role-based access control models. Security Conference, Baltimore, MD, (2000).
IEEE Computer vol. 29, issue 2, pp 38-47, [19] J.W. Byun, N. Li: Purpose based access
(1996). control for privacy protection in relational
[8] R. Sandhu, D. Ferraiolo, and R. Kuhn: The database systems, The VLDB Journal: The
NIST model for role-based access control: international journal on very large databases,
Towards a unified approach, Proceedings of (2004).
ACM Workshop on Role-Based Access Control, [20] D. Ferraiolo, R. Sandhu, S. Gavrila, R. Kuhn
Berlin, Germany, ISBN: 1-58113-259-X, pp. 47- and R. Chandramouli: Proposed NIST
63, (2000). standard for role-based access control, ACM
[9] E. Bertino, C. Bettini, E. Ferrari, and P. Transactions on Information System Security,
Samarati: An access control model supporting vol. 4, issue 3, pp. 224-274, (2001).
periodicity constraints and temporal [21] M.S. Sloman and K.P. Twidle: Domains: A
reasoning, ACM Transactions on Database Framework for Structuring Management
System, vol. 23, issue 3, pp. 231–285, (1998). Policy, Network and Distributed Systems
[10] J.B.D. Joshi, E. Bertino, U. Latif and A. Management, Addison-Wesley, pp.433-453,
Ghafoor: A generalized temporal role-based issue 16, (1994).
access control model, IEEE Transactions on [22] E. Constantine: A role-based framework for
Knowledge and Data Engineering, vol. 17, distributed systems management, PhD Thesis,
issue 1, pp. 4-23, (2005). (1998).
[11] T.Y.C. Woo and S.S. Lam: Designing a [23] World Wide Web Consortium (W3C),
distributed authorization service, Proceedings Platform for Privacy Preferences (P3P),
of IEEE INFOCOM, vol. 2, pp. 419-429, www.w3.org/P3P. Last accessed on: January
(1998). 10, 2007.
[12] B. Gopal and U. Manber: Integrating content-
based access mechanisms with hierarchical
file systems, Proceedings of the third