ARBAC Policy for a Large Multi-National Bank

Jayaraman, Karthick; Ganesh, Vijay; Tripunitara, Mahesh; Rinard, Martin C.; Chapin, Steve J.

Author(s)

Jayaraman, Karthick; Ganesh, Vijay; Tripunitara, Mahesh; Rinard, Martin C.; Chapin, Steve J.

DownloadMIT-CSAIL-TR-2011-026.pdf (203.9Kb)

Other Contributors

Program Analysis

Terms of use

Creative Commons Attribution-NoDerivs 3.0 Unported http://creativecommons.org/licenses/by-nd/3.0/

Metadata

Show full item record

Abstract

Administrative role-based access control (ARBAC) is the first comprehensive administrative model proposed for role-based access control (RBAC). ARBAC has several features for designing highly expressive policies, but current work has not highlighted the utility of these expressive policies. In this report, we present a case study of designing an ARBAC policy for a bank comprising 18 branches. Using this case study we provide an assessment about the features of ARBAC that are likely to be used in realistic policies.

Date issued

2011-04-27

URI

http://hdl.handle.net/1721.1/62562

Series/Report no.

MIT-CSAIL-TR-2011-026

Keywords

ARBAC policy, computer security, access control

Collections

CSAIL Technical Reports (July 1, 2003 - present)

The following license files are associated with this item:

Creative Commons