English
Related papers

Related papers: Dynamic Modeling for Representing Access Control P…

200 papers

Administrative role-based access control (ARBAC) is the first comprehensive administrative model proposed for role-based access control (RBAC). ARBAC has several features for designing highly expressive policies, but current work has not…

Cryptography and Security · Computer Science 2011-10-14 Karthick Jayaraman , Vijay Ganesh , Mahesh Tripunitara , Martin C Rinard , Steve J. Chapin

The proliferation of autonomous AI agents within enterprise environments introduces a critical security challenge: managing access control for emergent, novel tasks for which no predefined policies exist. This paper introduces an advanced…

Cryptography and Security · Computer Science 2025-10-14 Charles Fleming , Ashish Kundu , Ramana Kompella

This paper introduces language-based agent control (LBAC), a new programming model for agentic applications that brings techniques from programming languages and language-based security to the problem of agent control. In conventional…

Programming Languages · Computer Science 2026-05-14 Timothy Zhou , Loris D'Antoni , Nadia Polikarpova

Access control is a cornerstone of secure computing, yet large language models often blur role boundaries by producing unrestricted responses. We study role-conditioned refusals, focusing on the LLM's ability to adhere to access control…

Computation and Language · Computer Science 2025-10-10 Đorđe Klisura , Joseph Khoury , Ashish Kundu , Ram Krishnan , Anthony Rios

Basic role based access control [RBAC] provides a mechanism for segregating access privileges based upon a user's hierarchical roles within an organization. This model doesn't scale well when there is tight integration of multiple…

Cryptography and Security · Computer Science 2007-05-23 Jonathan K. Adams , Basheer N. Bristow

We propose a new static approach to Role-Based Access Control (RBAC) policy enforcement. The static approach we advocate includes a new design methodology, for applications involving RBAC, which integrates the security requirements into the…

Software Engineering · Computer Science 2014-09-12 Asad Ali , Maribel Fernández

The advent of large-scale, complex computing systems has dramatically increased the difficulties of securing accesses to systems' resources. To ensure confidentiality and integrity, the exploitation of access control mechanisms has thus…

Software Engineering · Computer Science 2015-08-18 Andrea Margheri , Rosario Pugliese , Francesco Tiezzi

Attribute-based access control (ABAC) promises a powerful way of formalizing access policies in support of a wide range of access management scenarios. Efficient implementation of ABAC in its general form is still a challenge, especially…

Cryptography and Security · Computer Science 2019-09-24 Hadi Ahmadi , Derek Small

Adapting an interface requires taking into account both the positive and negative effects that changes may have on the user. A carelessly picked adaptation may impose high costs to the user -- for example, due to surprise or relearning…

Human-Computer Interaction · Computer Science 2021-03-12 Kashyap Todi , Gilles Bailly , Luis A. Leiva , Antti Oulasvirta

Role Based Access Control (RBAC) is a very popular access control model, for long time investigated and widely deployed in the security architecture of different enterprises. To implement RBAC, roles have to be firstly identified within the…

Cryptography and Security · Computer Science 2015-03-20 Carlo Blundo , Stelvio Cimato

Relational databases play a central role in many information systems. Their schema contains structural (e.g. tables and columns) and behavioral (e.g. stored procedures or views) entity descriptions. Then, just like for ``normal'' software,…

Software Engineering · Computer Science 2024-04-15 Anne Etien , Nicolas Anquetil

Proliferation of systems that generate enormous amounts of data and operate in real time has led researchers to rethink the current organization of the cloud. Many proposed solutions consist of a number of small data centers in the vicinity…

Cryptography and Security · Computer Science 2024-10-29 Tamara Ranković , Miloš Simić , Milan Stojkov , Goran Sladić

Relationship-based access control (ReBAC) is a flexible and expressive framework that allows policies to be expressed in terms of chains of relationship between entities as well as attributes of entities. ReBAC policy mining algorithms have…

Cryptography and Security · Computer Science 2019-08-12 Thang Bui , Scott D. Stoller , Hieu Le

Attribute-Based Access Control (ABAC) and Relationship-based access control (ReBAC) provide a high level of expressiveness and flexibility that promote security and information sharing, by allowing policies to be expressed in terms of…

Cryptography and Security · Computer Science 2020-11-24 Thang Bui , Scott D. Stoller

Access control models have been developed to control authorized access to sensitive resources. This control of access is important as there is now a need for collaborative resource sharing between multiple organizations over open…

Cryptography and Security · Computer Science 2021-08-20 M Ridwanur Rahman , Ahmad Salehi Shahraki , Carsten Rudolph

Today's business organizations need access control systems that can handle complex, changing security requirements that go beyond what traditional methods can manage. Current approaches, such as Role-Based Access Control (RBAC),…

Cryptography and Security · Computer Science 2026-02-17 Sharif Noor Zisad , Ragib Hasan

Traditional access control systems, including RBAC, face significant limitations such as inflexible role definitions, difficulty handling dynamic scenarios, and lack of detailed accountability and traceability. To this end, we introduce the…

Cryptography and Security · Computer Science 2026-02-17 Sharif Noor Zisad , Ragib Hasan

The era of big data has promoted the vigorous development of many industries, boosting the full potential of holistic data-driven analysis. Hadoop has become the primary choice for mainstream platforms used by stakeholders to process big…

Cryptography and Security · Computer Science 2020-11-17 Min Yang

Noninterference offers a rigorous end-to-end guarantee for secure propagation of information. However, real-world systems almost always involve security requirements that change during program execution, making noninterference inapplicable.…

Cryptography and Security · Computer Science 2021-09-17 Peixuan Li , Danfeng Zhang

Over the years, access control systems have become increasingly more complex, often causing a disconnect between what is envisaged by the stakeholders in decision-making positions and the actual permissions granted as evidenced from access…

Cryptography and Security · Computer Science 2026-03-17 Gautam Kumar , Ravi Sundaram , Shamik Sural