In this paper we present a context-aware RBAC (CARBAC) model for pervasive computing
applications. The design of this model has been guided by the context-based access control …

Separation of Duty (SoD) is a fundamental security principle that ensures that critical tasks or
functions are divided upon multiple users in order to prevent fraud. The topic of SoD spans …

The administration of large role-based access control (RBAC) systems is a challenging
problem. In order to administer such systems, decentralization of administration tasks by the …

Separation-of-duty (SoD) is widely considered to be a fundamental principle in computer
security. A static SoD (SSoD) policy states that in order to have all permissions necessary to …

We propose the role-and-relation-based access control (R2BAC) model for workflow
authorization systems. In R2BAC, in addition to a user's role memberships, the user's …

Workflow management systems (WFMSs) have attracted a lot of interest both in academia
and the business community. A workflow consists of a collection of tasks that are organized …

The ability to control access to sensitive data in accordance with policy is perhaps the most
fundamental security requirement. Despite over four decades of security research, the …

CP‐ABE (Ciphertext‐Policy Attribute‐Based Encryption) with hidden access control policy
enables data owners to share their encrypted data using cloud storage with authorized …

XACML does not natively support RBAC and even the pecialized XACML profiles are not
able to support many relevant constraints such as static and dynamic separation of duty …

The advent of emerging technologies such as Web services, service-oriented architecture,
and cloud computing has enabled us to perform business services more efficiently and …