Role Based Access ControlTuesday, 8:30, Regency BD
Speaker
PRESENTATION
- Prof. Ravi S. Sandhu, George Mason University
Role based access control (RBAC) has rapidly emerged as a viable mechanism alternative to classical discretionary and mandatory access controls. This tutorial will provide a comprehensive, self-contained and up-to-date review and analysis of the principles and practice of RBAC.
Target Audience: Intermediate (assumes basic familiarity with Infosec principles and practice)
Topic Outline
- The NIST RBAC Model and its Background
- The NIST model
- RBAC96 and other models
- Administrative RBAC
- centralized administration
- decentralized administration
- RBAC in Commercial Systems
- database management systems
- RBAC on the Internet
- Advanced RBAC concepts
- constraints
- activation and inheritance
Professor Ravi Sandhu is Director of the Laboratory for Information Security Technology at George Mason University and President of Secusafe Associates. He has authored over 130 technical papers on Information Security in refereed publications. He is founding Editor-in-Chief of ACM Transactions on Information and Systems Security, Chairman of ACM SIGSAC and a member of the editorial board of IEEE Internet Computing. He founded the ACM Conference on Computer and Communications Security and the ACM Workshop on Role-Based Access Control, and chairs their steering committees. He has also served as Program Chair of the IEEE Computer Security Foundations Workshop, the Annual Computer Security Applications Conference and the IFIP Workshop on Database Security. He has consulted for numerous organizations and has lectured all over the world.