Please use this identifier to cite or link to this item:
Title: Supporting Parameterised Roles with Object-based Access Control
Contributor(s): Evered, Mark Peter  (author)
Publication Date: 2003
DOI: 10.1109/HICSS.2003.1174463
Handle Link:
Abstract: The per-method access control lists of standard internet technologies allow only simple forms of access control to be expressed and enforced. They also fail to enforce a strict need-to-know view of persistent data. Real applications require more flexible security constraints including parameter restrictions, logging of accesses and state-dependent access constraints. In particular, the concept of parameterised roles, central to a fine-grained specification of access rules and compliance with privacy laws, should be supported in a natural way. In this paper we demonstrate how an object-based approach using the mechanism of bracket capabilities can be used to enforce various kinds of access constraints including discretionary, mandatory and parameterised role-based access control. We give examples from a health information system incorporating secure patient access and secure access by appropriate medical and administrative personnel.
Publication Type: Conference Publication
Conference Details: HICSS-36 (2003): 36th Annual Hawaii International Conference on System Sciences, Waikoloa, Hawaii, 6th - 9th January, 2003
Source of Publication: Proceedings of the 36th Annual Hawaii International Conference on System Sciences, p. 1-9
Publisher: Institute of Electrical and Electronics Engineers (IEEE)
Place of Publication: Los Alamitos, United States of America
Fields of Research (FoR) 2008: 080499 Data Format not elsewhere classified
Socio-Economic Objective (SEO) 2008: 899999 Information and Communication Services not elsewhere classified
HERDC Category Description: E1 Refereed Scholarly Conference Publication
Publisher/associated links:
Appears in Collections:Conference Publication
School of Science and Technology

Files in This Item:
2 files
File Description SizeFormat 
Show full item record


checked on Feb 5, 2023

Page view(s)

checked on Mar 8, 2023
Google Media

Google ScholarTM



Items in Research UNE are protected by copyright, with all rights reserved, unless otherwise indicated.