HP Labs Technical Reports

Click here for full text: Postscript PDF

Integrating Policy-Driven Role Based Access Control with the Common Data Security Architecture

Lin, Along


Keyword(s): policy-driven management; RBAC; CDSA; policy description language

Abstract: This paper shows how Policy-Driven Role-Based Access Control (PDRBAC) techniques can be used to extend the Common Data Security Architecture (CDSA). The extensions provide constraint-based access control and are implemented using a flexible policy description language and a new trust policy enforcement mechanism. The expressiveness of the policy description language is demonstrated by examples and the integration of the policy enforcement mechanism with CDSA is described.

14 Pages

Back to Index

[Research] [News] [Tech Reports] [Palo Alto] [Bristol] [Japan] [Israel] [Site Map] [Home] [Hewlett-Packard]