On the complexity of role updating feasibility problem in RBAC |
| |
| Authors: | Jianfeng Lu Dewu Xu Lei Jin Jianmin Han Hao Peng |
| |
| Affiliation: | 1. School of Mathematics-Physical & Information Engineering, Zhejiang Normal University, Jinhua, Zhejiang, China;2. School of Economics & Management, Zhejiang Normal University, Jinhua, Zhejiang, China;3. Department of Information Sciences, University of Pittsburgh, Pittsburgh, PA, USA |
| |
| Abstract: | In Role Based Access Control (RBAC) systems, it is necessary and important to update the role–permission assignments in order to reflect the evolutions of the system transactions. However, role updating is generally complex and challenging, especially for large-scale RBAC systems. This is because the resulting state is usually expected to meet various requirements and constraints. In this paper, we focus on a fundamental problem of role updating in RBAC, which determines whether there exists a valid role–permission assignment, i.e., whether it can satisfy all the requirements of the role updating and without violating any role–capacity or permission–capacity constraint. We formally define such a problem as the Role Updating Feasibility Problem (RUFP), and study the computational complexity of RUFP in different subcases. Our results show that although several subcases are solvable in linear time, this problem is NP-complete in the general case. |
| |
| Keywords: | Role based access control Role updating feasibility problem Computational complexity |
| 本文献已被 ScienceDirect 等数据库收录! |
|
