TY - GEN
T1 - On the relationship between finite domain ABAM and PreUCONA
AU - Alshehri, Asma
AU - Sandhu, Ravi
N1 - Publisher Copyright:
© Springer International Publishing AG 2016.
PY - 2016
Y1 - 2016
N2 - Several access control models that use attributes have been proposed, although none so far is regarded as a definitive characterization of attribute-based access control (ABAC). Among these a recently proposed model is the attribute-based access matrix (ABAM) model [14] that extends the HRU model [4] by introducing attributes. In this paper we consider the finite case of ABAM, where the number of attributes is finite and the permissible values (i.e., domain) for each attribute is finite. Henceforth, we understand ABAM to mean finite ABAM. A separately developed model with finite attribute domains is PreUCONA [10], which is a sub-model of the usage control UCON model [9]. This paper explores the relationship between the expressive power of these two finite attribute domain models. Since the safety problem for HRU is undecidable it follows safety is also undecidable for ABAM, while it is known to be decidable for PreUCONA [10]. Hence ABAM cannot be reduced to PreUCONA. We define a special case of ABAM called RL-ABAM2 and show that RL-ABAM2 and PreUCONA are equivalent in expressive power, but each has its own advantages. Finally, we propose a possible way to combine the advantages of these two models.
AB - Several access control models that use attributes have been proposed, although none so far is regarded as a definitive characterization of attribute-based access control (ABAC). Among these a recently proposed model is the attribute-based access matrix (ABAM) model [14] that extends the HRU model [4] by introducing attributes. In this paper we consider the finite case of ABAM, where the number of attributes is finite and the permissible values (i.e., domain) for each attribute is finite. Henceforth, we understand ABAM to mean finite ABAM. A separately developed model with finite attribute domains is PreUCONA [10], which is a sub-model of the usage control UCON model [9]. This paper explores the relationship between the expressive power of these two finite attribute domain models. Since the safety problem for HRU is undecidable it follows safety is also undecidable for ABAM, while it is known to be decidable for PreUCONA [10]. Hence ABAM cannot be reduced to PreUCONA. We define a special case of ABAM called RL-ABAM2 and show that RL-ABAM2 and PreUCONA are equivalent in expressive power, but each has its own advantages. Finally, we propose a possible way to combine the advantages of these two models.
UR - https://www.scopus.com/pages/publications/84989963214
U2 - 10.1007/978-3-319-46298-1_22
DO - 10.1007/978-3-319-46298-1_22
M3 - Conference contribution
AN - SCOPUS:84989963214
SN - 9783319462974
T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
SP - 333
EP - 346
BT - Network and System Security - 10th International Conference, NSS 2016, Proceedings
A2 - Yung, Moti
A2 - Chen, Jiageng
A2 - Su, Chunhua
A2 - Piuri, Vincenzo
PB - Springer Verlag
T2 - 10th International Conference on Network and System Security, NSS 2016
Y2 - 28 September 2016 through 30 September 2016
ER -