Role-based Access Control
2nd Edition
Published on 31. January 2007
Book
Paperback/Softback
406 pages
978-1-59693-113-8 (ISBN)
Description
Role-based access control (RBAC) is a security mechanism that has gained wide acceptance in the field because it can greatly lower the cost and complexity of securing large networked and Web-based systems. Written by leading experts, this newly revised edition of the Artech House bestseller, "Role-Based Access Control", offers practitioners the very latest details on this popular network security model.
More details
Series
Edition
2nd Revised edition
Language
English
Place of publication
Norwood
United States
Target group
Professional and scholarly
Edition type
Revised edition
Product notice
Paperback (trade)
Illustrations
1, black & white illustrations
Dimensions
Height: 235 mm
Width: 186 mm
Thickness: 26 mm
Weight
757 gr
ISBN-13
978-1-59693-113-8 (9781596931138)
Copyright in bibliographic data and cover images is held by Nielsen Book Services Limited or by the publishers or by their respective licensors: all rights reserved.
Schweitzer Classification
Other editions
Additional editions
David F. Ferraiolo
Role-Based Access Control, Second Edition
E-Book
01/2006
Artech House
€72.99
Available for download
Previous edition
D. Richard Kuhn | David F. Ferraiolo | Ramaswamy Chandramouli
Role-based Access Control
Book
04/2003
Artech House Publishers
€88.09
Article exhausted; check for reprint
Persons
David F. Ferraiolo is a supervisory computer scientist in the Computer Security Division at the National Institute of Standards and Technology (NIST), Gaithersburg, MD. In addition to managing three access control and security management projects, he is leading research to improve operational assurance, security authentication, intrusion detection, and authorization. D. Richard Kuhn is a computer scientist in the Computer Security Division of NIST. His primary technical interests are information security and software testing and assurance. He developed, in conjunction with David Ferraiolo, the first formal model for role based access control, and is overseeing NIST's proposed standard for RBAC. Ramaswamy Chandramouli is a computer scientist in the Computer Security Division of NIST. He has more than 17 years experience in design and development of IT solutions in industry and government, and coauthored the first international security protection profile for RBAC. His current work focuses on automated security testing tools, and he is coauthor of NIST's proposed RBAC standard.
Content
Section I: Access Control Concepts & RBAC? Introduction.; Access Control Definitions and Enforcement Framework.; Section II: RBAC Framework: Models & Contraints? Core RBAC Features.; Role Hierarchies.; SoD and Constraints in RBAC Systems.; RBAC, MAC and DAC.; RBAC and Privacy.; Section III: RBAC Standardization? RBAC Standards.; Section IV: Enterprise Security Administration in RBAC? Role-Based Administration of RBAC.; Role Engineering.; Enterprise Access Control Frameworks Using RBAC and XML Technologies.; Section V: RBAC in IT Systems Applications? Integrating RBAC with Enterprise IT Infrastructures.; RBAC Implementation Case Studies.; RBAC Features in Commerical Products.; Appendices.; About the Authors.; Index.