Rebuttal to the NIST RBAC model proposal

Trent Jaeger, Jonathon E. Tidswell

Research output: Contribution to conferencePaper

14 Scopus citations

Abstract

In this abstract, we rebut the proposed RBAC unified reference model as defined by Sandhu, Ferriaolo, and Kuhn. As a unified reference model, this proposal simply re-enforces some of the concepts that are fundamental to RBAC (i.e., roles, users, and permissions) without clarifying the more complex concepts. Also, the definitions of the concepts are too informal to drive any useful standards proposal. We suggest formalizing the base concepts, including the addition of role administration, and that more work is necessary for constraints to be useful.

Original languageEnglish (US)
Pages65-66
Number of pages2
StatePublished - Jan 1 2000
Event5th ACM Workshop on Role-Based Access Control (RBAC) - Berlin, Ger
Duration: Jul 26 2000Jul 27 2000

Conference

Conference5th ACM Workshop on Role-Based Access Control (RBAC)
CityBerlin, Ger
Period7/26/007/27/00

All Science Journal Classification (ASJC) codes

  • Computer Science(all)

Cite this

Jaeger, T., & Tidswell, J. E. (2000). Rebuttal to the NIST RBAC model proposal. 65-66. Paper presented at 5th ACM Workshop on Role-Based Access Control (RBAC), Berlin, Ger, .