Abstract
As organizations implement information strategies that call for sharing access to resources in the networked environment, mechanisms must be provided to protect the resources from adversaries. The proposed delegation framework addresses the issue of how to advocate selective information sharing in role-based systems while minimizing the risks of unauthorized access. We introduce a systematic approach to specify delegation and revocation policies using a set of rules. We demonstrate the feasibility of our framework through policy specification, enforcement, and a proof-of-concept implementation on specific domains, e.g. the healthcare environment. We believe that our work can be applied to organizations that rely heavily on collaborative tasks.
| Original language | English (US) |
|---|---|
| Title of host publication | Proceedings of ACM Symposium on Access Control Models and Technologies (SACMAT 2002) |
| Pages | 125-134 |
| Number of pages | 10 |
| State | Published - 2002 |
| Externally published | Yes |
| Event | Proceedings of Seventh ACM Symposium on Access Control Models and Technologies: SACMAT 2002 - Monterey, CA, United States Duration: Jun 3 2002 → Jun 4 2002 |
Other
| Other | Proceedings of Seventh ACM Symposium on Access Control Models and Technologies: SACMAT 2002 |
|---|---|
| Country/Territory | United States |
| City | Monterey, CA |
| Period | 6/3/02 → 6/4/02 |
Keywords
- Access control
- Delegation
- Healthcare information system
- Revocation
- Role
ASJC Scopus subject areas
- Computer Science(all)