期刊名称:International Journal of Computer Science and Network Security
印刷版ISSN:1738-7906
出版年度:2017
卷号:17
期号:7
页码:267-272
出版社:International Journal of Computer Science and Network Security
摘要:Protecting data against unauthorized access is an essential demand for any information system. Such protection ranges from simple authentication to the very complex authorization while at the same time ensuring accessibility to authorized users. To achieve these security considerations, security policies are defined, usually by the system administrator, for controlling and monitoring users accessing. These policies consist of a series of constraints associated with a set of roles that, in turn, may be assigned to one or more users according to their duties. In most cases, user��s roles do not overlap or con?ict. However, in a rapidly changing systems, a user would likely have more than one role, and some of these roles may very well overlap. In this paper, an abstract hierarchy nature security model (MORoles) that has been specifically designed for managing overlapping security roles is presented. MORoles ensures that security roles are mutually consistent by organizing roles into a hierarchy structure to support a more expressive representation and then extracts the highest non-con?icting roles amongst the user��s assigned roles. To underscore the practical visibility of the proposed approach, the open source library tree.hh is utilized to provide a practical implementation.
