Efficient access enforcement in distributed role-based access control (RBAC) deployments Conference

Tripunitara, MV, Carbunar, B. (2009). Efficient access enforcement in distributed role-based access control (RBAC) deployments . 155-164. 10.1145/1542207.1542232

cited authors

  • Tripunitara, MV; Carbunar, B

abstract

  • We address the distributed setting for enforcement of a centralized Role-Based Access Control (RBAC) protection state. We present a new approach for time- and space-efficient access enforcement. Underlying our approach is a data structure that we call a cascade Bloom filter. We describe our approach, provide details about the cascade Bloom filter, its associated algorithms, soundness and completeness properties for those algorithms, and provide an empirical validation for distributed access enforcement of RBAC. We demonstrate that even in low-capability devices such as WiFi network access points, we can perform thousands of access checks in a second. Copyright 2009 ACM.

publication date

  • November 30, 2009

Digital Object Identifier (DOI)

start page

  • 155

end page

  • 164