Simon and Zurko, 1997

Owned by David Doret, created
Last updated: 02-11-2021
1 min read

Separation of Duty in Role-Based Environments

Type

Article

Year

1997

Authors

Simon, R.T., Zurko, M.E.

Identifiers

  • DOI: 10.1109/CSFW.1997.596811

  • INSPEC Accession Number: 5623266

  • Print ISBN:0-8186-7990-5

  • Print ISSN: 1063-6900

Publication

IEEE: Proceedings 10th Computer Security Foundations Workshop

Pages

183–194

Abstract

Separation of Duty is a principle that has a long history in computer security research. Many computing systems provide rudimentary support for this principle, but often the support is inconsistent with the way the principle is applied in non-computing environments. Furthermore, there appears to be no single accepted meaning of the term. We examine the ways in which Separation of Duty has been used, adding the notion of History-based Separation of Duty. We assess ways in which computing systems may support Separation of Duty. We discuss the mechanisms we are implementing to support Separation of Duty and roles in Adage, a general-purpose authorization language and toolkit.

(Simon and Zurko, 1997, p. 1)

Links

Citation

Simon, R.T., Zurko, M.E., 1997. Separation of Duty in Role-Based Environments, in: IEEE: Proceedings 10th Computer Security Foundations Workshop. pp. 183–194.

Follow us on LinkedIn | Discuss on Slack | Support us with Patreon | Sign-up for a free membership.

This wiki is owned by Open Measure, a non-profit association. The original content we publish is licensed under a Creative Commons Attribution 4.0 International License.