A scheme and concept for limited inheritance of privileges in a user hierarchy

Yuh-Min Tseng, Jinn Ke Jan

Research output: Contribution to journalArticle

1 Citation (Scopus)

Abstract

User hierarchy is a critical issue in the access control policy for information protection systems. The conventional user hierarchy structure utilized over the past decades is discussed. Within this user hierarchy structure, a user is permitted to access all of the files of other users who are below him in the user hierarchy. However, this relationship is not suitable for the following situation; users desire to keep some permissions of files private to themselves and free from access from superior users. In this paper, we shall propose a new user privilege hierarchy to represent the relationship of limited inheritance. Furthermore, we also provide an effective and dynamic method that can procure the relationships and the inheritable privileges among users in the user privilege hierarchy.

Original languageEnglish
Pages (from-to)199-211
Number of pages13
JournalInformation Sciences
Volume112
Issue number1-4
DOIs
Publication statusPublished - 1998 Jan 1

Fingerprint

Access control
Concepts
Hierarchy
Control Policy
Access Control

All Science Journal Classification (ASJC) codes

  • Software
  • Control and Systems Engineering
  • Theoretical Computer Science
  • Computer Science Applications
  • Information Systems and Management
  • Artificial Intelligence

Cite this

@article{c883b5bb40424c95a14d3d8b279e5254,
title = "A scheme and concept for limited inheritance of privileges in a user hierarchy",
abstract = "User hierarchy is a critical issue in the access control policy for information protection systems. The conventional user hierarchy structure utilized over the past decades is discussed. Within this user hierarchy structure, a user is permitted to access all of the files of other users who are below him in the user hierarchy. However, this relationship is not suitable for the following situation; users desire to keep some permissions of files private to themselves and free from access from superior users. In this paper, we shall propose a new user privilege hierarchy to represent the relationship of limited inheritance. Furthermore, we also provide an effective and dynamic method that can procure the relationships and the inheritable privileges among users in the user privilege hierarchy.",
author = "Yuh-Min Tseng and Jan, {Jinn Ke}",
year = "1998",
month = "1",
day = "1",
doi = "10.1016/S0020-0255(98)10031-2",
language = "English",
volume = "112",
pages = "199--211",
journal = "Information Sciences",
issn = "0020-0255",
publisher = "Elsevier Inc.",
number = "1-4",

}

A scheme and concept for limited inheritance of privileges in a user hierarchy. / Tseng, Yuh-Min; Jan, Jinn Ke.

In: Information Sciences, Vol. 112, No. 1-4, 01.01.1998, p. 199-211.

Research output: Contribution to journalArticle

TY - JOUR

T1 - A scheme and concept for limited inheritance of privileges in a user hierarchy

AU - Tseng, Yuh-Min

AU - Jan, Jinn Ke

PY - 1998/1/1

Y1 - 1998/1/1

N2 - User hierarchy is a critical issue in the access control policy for information protection systems. The conventional user hierarchy structure utilized over the past decades is discussed. Within this user hierarchy structure, a user is permitted to access all of the files of other users who are below him in the user hierarchy. However, this relationship is not suitable for the following situation; users desire to keep some permissions of files private to themselves and free from access from superior users. In this paper, we shall propose a new user privilege hierarchy to represent the relationship of limited inheritance. Furthermore, we also provide an effective and dynamic method that can procure the relationships and the inheritable privileges among users in the user privilege hierarchy.

AB - User hierarchy is a critical issue in the access control policy for information protection systems. The conventional user hierarchy structure utilized over the past decades is discussed. Within this user hierarchy structure, a user is permitted to access all of the files of other users who are below him in the user hierarchy. However, this relationship is not suitable for the following situation; users desire to keep some permissions of files private to themselves and free from access from superior users. In this paper, we shall propose a new user privilege hierarchy to represent the relationship of limited inheritance. Furthermore, we also provide an effective and dynamic method that can procure the relationships and the inheritable privileges among users in the user privilege hierarchy.

UR - http://www.scopus.com/inward/record.url?scp=0032295302&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=0032295302&partnerID=8YFLogxK

U2 - 10.1016/S0020-0255(98)10031-2

DO - 10.1016/S0020-0255(98)10031-2

M3 - Article

AN - SCOPUS:0032295302

VL - 112

SP - 199

EP - 211

JO - Information Sciences

JF - Information Sciences

SN - 0020-0255

IS - 1-4

ER -