Academic
Publications
On the Formal Definition of Separation-of-Duty Policies and their Composition

On the Formal Definition of Separation-of-Duty Policies and their Composition,10.1109/SECPRI.1998.674833,Virgil D. Gligor,Serban I. Gavrila,David F. F

On the Formal Definition of Separation-of-Duty Policies and their Composition   (Citations: 132)
BibTex | RIS | RefWorks Download
In this paper we define formally a wide variety of separation-of-duty (SoD) properties, which include the best known to date, and establish their relationshi ps within a formal model of role-based access control (RBAC). The formalism helps remove all ambiguities of informal definition, and offers a wide choice of implementation strategies. We also explore the composability of SoD properties and policies under a simple criterion. We conclude that practical implementation for SoD policies requires new method s and tools for security administration even within applications that already support RBAC, such as mos t database management systems.
Conference: IEEE Symposium on Security and Privacy - S&P , pp. 172-183, 1998
Cumulative Annual
View Publication
The following links allow you to view full publications. These links are maintained by other sources not affiliated with Microsoft Academic Search.
Sort by: