Asian Journal of Information Technology

Year: 2005
Volume: 4
Issue: 4
Page No. 438 - 451

An Extended RBAC Model to Prevent Information Leakage Within Object-Oriented Systems

Authors : Shih-Chien Chou and Yih-Cheng Lee

Abstract: This study proposes a role-based access control (RBAC) model to prevent information leakage within object-oriented systems. It is named ERBAC (extended role-based access control) because it is an extension of RBAC96. If offers the following useful features: (a) adapting to dynamic object state change, (b) adapting to dynamic role change, (c) avoiding Trojan horses, (d) detailing access control granularity to variables, (e) allowing declassification, (f) allowing purpose-oriented method invocation, and (g) controlling write access precisely. We evaluated ERBAC through experiments. The evaluation result is also shown in this study.

How to cite this article:

Shih-Chien Chou and Yih-Cheng Lee , 2005. An Extended RBAC Model to Prevent Information Leakage Within Object-Oriented Systems . Asian Journal of Information Technology, 4: 438-451.

Design and power by Medwell Web Development Team. © Medwell Publishing 2022 All Rights Reserved