Abstract
This paper proposes an extension of the conventional role-based access control (RBAC model) called enhanced role-based access control or ERBAC03 model. The model is developed for the role-based access control of information system resources in large organizations that have many branches. Each branch consists of many users with different roles. It is related to a specified static separation of duty constraint in order to prevent fraud of users. We analyze the result of RBAC and ERBAC03 models by a number of experiments based on users' locations. The result proves that the proposed ERBAC03 model eliminates the inaccuracy of access control administration that has incurred in the conventional RBAC model. Any conflicting role is not allowed to be added to the associated database tables.
Sign-in/Register to access full text options 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
