TY - GEN
T1 - Rebuttal to the NIST RBAC model proposal
AU - Jaeger, Trent
AU - Tidswell, Jonathon E.
PY - 2000
Y1 - 2000
N2 - In this abstract, we rebut the proposed RBAC unified reference model as defined by Sandhu, Ferriaolo, and Kuhn. As a unified reference model, this proposal simply re-enforces some of the concepts that are fundamental to RBAC (i.e., roles, users, and permissions) without clarifying the more complex concepts. Also, the definitions of the concepts are too informal to drive any useful standards proposal. We suggest formalizing the base concepts, including the addition of role administration, and that more work is necessary for constraints to be useful.
AB - In this abstract, we rebut the proposed RBAC unified reference model as defined by Sandhu, Ferriaolo, and Kuhn. As a unified reference model, this proposal simply re-enforces some of the concepts that are fundamental to RBAC (i.e., roles, users, and permissions) without clarifying the more complex concepts. Also, the definitions of the concepts are too informal to drive any useful standards proposal. We suggest formalizing the base concepts, including the addition of role administration, and that more work is necessary for constraints to be useful.
UR - https://www.scopus.com/pages/publications/0033646047
UR - https://www.scopus.com/pages/publications/0033646047#tab=citedBy
U2 - 10.1145/344287.344302
DO - 10.1145/344287.344302
M3 - Conference contribution
AN - SCOPUS:0033646047
T3 - Proceedings of the ACM Workshop on Role-Based Access Control
SP - 65
EP - 66
BT - RBAC '00
PB - ACM
T2 - 5th ACM Workshop on Role-Based Access Control, RBAC 2000
Y2 - 26 July 2000 through 27 July 2000
ER -