Academic Journals Database
Disseminating quality controlled scientific knowledge

Purpose engineering for Contextual Role-Based Access Control (C-RBAC)

Author(s): Muhammad Nabeel Tahir

Journal: International Journal of Engineering
ISSN 1985-2312

Volume: 2;
Issue: 3;
Start page: 41;
Date: 2008;
Original page

Keywords: Purpose Engineering | Intentions | C-RBAC | Purpose Hierarchy

Distributed and ubiquitous computing environments have brought enormous efficiency to the collection, manipulation and distribution of information and services. Although this efficiency has revolutionized countless organizations but it has also increased the threats to individual’s privacy because the information stored within the collection of heterogeneous distributed components is sensitive and requires some form of access control. The way to protect privacy in this age of information technology requires such access control system that can accommodate organization requirements to protect privacy of individuals with ease in management and administration of resources. Among those requirements, purpose inference is one of the major problems as the total access control decision mainly relies on the user intentions/purposed. This work in this paper is an attempt to provide purpose engineering semantics that we use for the proposed contextual role-based access control model (C-RBAC) in order to comply with HIPAA.
Why do you need a reservation system?      Save time & money - Smart Internet Solutions