Rationale and Design of the Access Specification Language RASP

Title
Rationale and Design of the Access Specification Language RASP
Publication Date
2012
Author(s)
Evered, Mark P
Type of document
Journal Article
Language
en
Entity Type
Publication
Publisher
Society of Digital Information and Wireless Communications (SDIWC)
Place of publication
China
UNE publication id
une:12046
Abstract
In this paper we describe the formal specification language RASP for expressing fine-grained access control constraints in information systems.The design of the language is motivated by a number of IS case studies which demonstrate the complexity of the access constraints which arise if minimal (need-to-know) access is to be strictly enforced. RASP supports modularity, parameterization, role acquisition, constraint expressions and a symmetrical approach to role transitions and attribute transitions. No existing access control specification language supports all of these complex, realistic requirements
Link
Citation
International Journal of Cyber-Security and Digital Forensics, 1(1), p. 1-14
ISSN
2305-0012
Start page
1
End page
14

Files:

NameSizeformatDescriptionLink