Representation and Reasoning on Role-Based Access Control Policies with Conceptual Graphs

Abstract : This paper focuses on two aspects of access control: graphical representation and reasoning. Access control policies describe which permissions are granted to users w.r.t. some resources. The Role-Based Access Control models introduce the concept of role to organize users' permissions. Currently, there is a need for tools allowing security officers to graphically describe and reason on role-based policies. Thanks to conceptual graphs we can provide a consistent graphical formalism for Role-Based Access Control policies, which is able to deal with specific features of this access control model such as role hierarchy and constraints. Moreover, once a policy is modelled by CGs, graph rules and inference procedures can be used to reason on it; This allows security officers to understand why some permissions are granted or not and to detect whether integrity constraints are violated.
Document type :
Conference papers
Complete list of metadatas

https://hal.archives-ouvertes.fr/hal-01581313
Contributor : Équipe Gestionnaire Des Publications Si Liris <>
Submitted on : Monday, September 4, 2017 - 3:00:14 PM
Last modification on : Tuesday, August 20, 2019 - 3:40:07 PM

Identifiers

  • HAL Id : hal-01581313, version 1

Citation

Romuald Thion, Stéphane Coulondre. Representation and Reasoning on Role-Based Access Control Policies with Conceptual Graphs. 14th International Conference on Conceptual Structures, ICCS'06, Aug 2006, Aalborg University, Denmark, Denmark. pp.427-440. ⟨hal-01581313⟩

Share

Metrics

Record views

52