WIT Press


MARAH: An RBAC Model And Its Integration In A Web Server

Price

Free (open access)

Paper DOI

10.2495/NL040251

Volume

30

Pages

10

Published

2004

Size

242 kb

Author(s)

P. Diaz, D. Sanz & I. Aedo

Abstract

Hypermedia systems, whether implemented as web sites or not, should support security policies offering different views of the same information and different manipulation abilities to users with different needs and responsibilities in a particular context. Several experiences have demonstrated that role-based access control policies are a powerful mechanism to simplify management tasks. This paper describes the MARAH model that provides security designers with mechanisms to specify security rules using elements and abstractions of the hypermedia domain (nodes, links or contents). From a functional point of view, the model provides security designers with mechanisms to specify the rules that ensure a proper operation of any hypermedia system. Thus, one of the basic assumptions of this work is the use of abstractions belonging to the hype

Keywords