Role-Based Risk Adaptive Access Control Model

• Published in: Applied Mechanics and Materials Vol. 416-417; no. Linear Drives for Industry Applications IX; pp. 1516 - 1521
• Main Authors: Huang, Dan Hua, Yang, Ya Qian
• Format: Journal Article
• Language: English
• Published: Zurich Trans Tech Publications Ltd 01.09.2013
• Subjects: Access control; Adaptive control systems; Business; Computer information security; Flexibility; Mathematical models; Risk; Tasks; RBAC; Risk Adaptive; Access Control (AC)
• ISBN: 303785863X; 9783037858639
• ISSN: 1660-9336; 1662-7482; 1662-7482
• DOI: 10.4028/www.scientific.net/AMM.416-417.1516

To solve the problem of only considering constraint verification and ignoring current running environmental security, Economical risk is applied in Role-Based Access Control (RBAC) to weigh user needs and environmental security according to context information and current environment. A model for Role-Based Risk Adaptive Access Control (RRAAC) combining traditional RBAC with new Risk Adaptable Access Control (RAdAC), and the method of risk calculation used in RRAAC model and its mathematic analysis and verification are presented in this paper. This RRAAC model has already been realized in a general personnel management system and experimental result shows that this model possesses great flexibility and certain adaptability coping with environmental changes during access control and task executing in business processes.