© 2005 Ravi Sandhu Administrative Scope (continued) (best viewed in slide show mode) Ravi Sandhu...

Administrative Scope (continued)(best viewed in slide show mode)

Ravi SandhuLaboratory for Information Security Technology

George Mason Universitywww.list.gmu.edusandhu@gmu.edu

RHA Conditions for Four Operations

• These conditions always apply• RHA1

• Additional conditions may be imposed• RHA2, RHA3, RHA4

These are allowed to be

RHA: Add role Y with no children (scope PL1)

RHA: Insert edge ENG1, Y (scope PL1)

RHA: Delete edge ENG1, Y (scope PL1)

• outside scope of PL1• so cannot get back to childless Y

RHA: Add role Y with no parents (scope PL1)

scope of PL1

scope of DIR

RHA: Add role Y with no parents (scope PL1)

scope of PL1

scope of DIR

RHA Conditions for Four Operations

• These conditions always apply• RHA1

• Additional conditions may be imposed• RHA2, RHA3, RHA4

These are allowed to be

May not be a good idea, especially for parents

RHA3: Administrative Scope

S+(PSO1)

S+(DSO)

RHA3: PSO1 creates Y

S+(PSO1)

S+(DSO)

RHA3: Consistency Constraints

RHA4: admin-authority operations

RHA4: creation of parentless roles not allowed

Forces PSO1 as administrator of X

Should be DSO?

Eliminated from admin-hierarchy

© 2005 Ravi Sandhu Administrative Scope (continued) (best viewed in slide show mode) Ravi Sandhu...

Documents

Access Control and Semantic Web Technologies Ravi Sandhu Executive Director and Endowed Chair

© 2004 Ravi Sandhu The Safety Problem in Access Control HRU Model Ravi Sandhu Laboratory for Information Security Technology George Mason

© 2004-5 Ravi Sandhu Cyber-Identity, Authority and Trust in an Uncertain World Prof. Ravi Sandhu Laboratory for Information Security Technology

© 2004 Ravi Sandhu The Typed Access Matrix Model (TAM) and Augmented TAM (ATAM) Ravi Sandhu Laboratory for Information Security Technology

© 2004 Ravi Sandhu Role-Based Access Control Prof. Ravi Sandhu Laboratory for Information Security Technology George Mason University

© 2004 Ravi Sandhu A Perspective on Graphs and Access Control Models Ravi Sandhu Laboratory for Information Security Technology George

CURRICULUM VITAE - Prof. Ravi Sandhuprofsandhu.com/sandhu/vita_long.docx · Web viewCo-Principal Investigators: Ravi Sandhu, Ram Tripathi Sponsor: Silicon Informatics, 2012-2014 Secure

Role-Based Access Control on the Web - Ravi Sandhu

© 2004-5 Ravi Sandhu Security Issues in P2P Systems Prof. Ravi Sandhu Laboratory for Information Security Technology George Mason University

Security Cloud: Cloud Trust Brokers · Security and the Cloud: Cloud Trust Brokers Ravi Sandhu Ravi Ganesan* Founder, SafeMashups +1.415.680.5746 ravi@safemashups com ravi@findravi

The ASCAA * Principles Applied to Usage Control Prof. Ravi Sandhu

ISA 662 IKE Key management for IPSEC Prof. Ravi Sandhu

Information Assurance: A Personal Perspective Ravi Sandhu

1 Cloud Computing Prof. Ravi Sandhu Executive Director and Endowed Chair April 12, 2013 ravi.sandhu@utsa.edu © Ravi Sandhu World-Leading

INFS 767 Fall 2003 Administrative RBAC ARBAC97 Prof. Ravi Sandhu

© 2005 Ravi Sandhu Access Control Hierarchies (best viewed in slide show mode) Ravi Sandhu Laboratory for Information Security Technology

1 The Future of Cyber Security Prof. Ravi Sandhu Executive Director and Endowed Chair ravi.sandhu@utsa.edu © Ravi Sandhu

© 2006 Ravi Sandhu Secure Information Sharing Enabled by Trusted Computing and PEI * Models Ravi Sandhu (George Mason University and TriCipher)

© 2004 Ravi Sandhu Cyber-Identity, Authority and Trust in an Uncertain World Prof. Ravi Sandhu Laboratory for Information Security Technology

© 2004 Ravi Sandhu The Schematic Protection Model (SPM) Ravi Sandhu Laboratory for Information Security Technology George Mason University