The Flexible Authorization Framework (FAF) defined by Jajodia et al. [2001] provides a policy-neutral framework for specifying access control policies that is expressive enough to specify many known access control policies. Although the original formulation of FAF indicated how rules could be added to or deleted from a FAF specification, it did not address the removal of access permissions from users. We present two options for removing permissions in FAF and provide details on the option which is representation independent. © 2003 ACM.
Removing permissions in the flexible authorization framework / Duminda, Wijesekera; Sushil, Jajodia; PARISI PRESICCE, Francesco; Åsa, Hagstrom. - In: ACM TRANSACTIONS ON DATABASE SYSTEMS. - ISSN 0362-5915. - 28:3(2003), pp. 209-229. [10.1145/937598.937599]
Removing permissions in the flexible authorization framework
PARISI PRESICCE, Francesco;
2003
Abstract
The Flexible Authorization Framework (FAF) defined by Jajodia et al. [2001] provides a policy-neutral framework for specifying access control policies that is expressive enough to specify many known access control policies. Although the original formulation of FAF indicated how rules could be added to or deleted from a FAF specification, it did not address the removal of access permissions from users. We present two options for removing permissions in FAF and provide details on the option which is representation independent. © 2003 ACM.I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.