Abstract—The user authorization query (UAQ) problem determines whether there exist an optimum set of roles to be activated to provide a set of permissions requested by a user. It has been deemed as a key issue for efficiently handling user’s access request. The cardinality and dynamic separation of duty constraints make the issue more complex in role based access control (RBAC). There are many researches dedicate to analyze the computational complexity of the UAQ problem and try to solve this problem using algorithms. However, all of these researches only consider the dynamic separation of duties, role-cardinality and permission-cardinality constraints, and they do not pay attention to the context constraints. The UAQ problem is raised in the web environment, there is always a lot of context information, and thus this paper intends to use the context to propose a general model to solve the UAQ problem in the web environment.
Index Terms—Role-based access control, user authorization query, context, fine-grained.
Gang Liu, Shaomin Ji, Runnan Zhang, Guofang Zhang, Lu Fang and Quan Wang are with School of Computer Science and Technology, XIDIAN University, Xi’an, China (e-mail: gliu_xd@163.com, 865332046@qq.com, zhangrunnan_xd@qq.com, zgf356653246@163.com, l_silence104@163.com, qwang_xd@163.com).
[PDF]
Cite:Gang Liu, Shaomin Ji, Runnan Zhang, Guofang Zhang, Lu Fang, and Quan Wang, "Extended RBAC with Context-Based Role- Recommendation," Journal of Advances in Computer Networks vol. 6, no. 1, pp. 48-54, 2018.
