This is an individual assignment. You are required to solve it on your own using whatever material you like. Please sign and submit the following honor code statement with your solution:
I have not taken any
help on this assignment from anyone and not provided any help to anyone. The solution has been entirely worked out by
me and represents my individual effort.
Please submit a typed solution with the signed honor code statement. Keep a copy for your records and reference. Any clarification questions regarding the assignment should be emailed to sandhu@gmu.edu. Clarifications will be posted on this page as needed.
Answer both questions. For both questions provide a word count. Figures and Tables are exempted from the word count. Both questions have equal weight.
1. Write a 500 word article explaining the differences between the models presented in the following papers.
A. Ravi Sandhu, Edward Coyne, Hal Feinstein and Charles Youman, “Role-Based Access Control Models.” IEEE Computer, Volume 29, Number 2, February 1996, pages 38-47. pdf
B. Ravi Sandhu, David Ferraiolo and Richard Kuhn, “The NIST Model for Role-Based Access Control: Towards A Unified Standard.” Proc. 5th ACM Workshop on Role-Based Access Control, Berlin, Germany, July 26-28, 2000, pages 47-63. pdf
C. David F. Ferraiolo, Ravi Sandhu, Serban Gavrila, D. Richard Kuhn and Ramaswamy Chandramouli. “Proposed NIST Standard for Role-Based Access Control.” ACM Transactions on Information and System Security, Volume 4, Number 3, August 2001, pages 224-274. pdf
2. Read the following column in the Feb 2004 issue of IEEE Computer.
Simplifying public key management
Gutmann, P.
Computer, Vol.37, Iss.2,
Feb. 2004
Pages: 101- 103
Write a 500 word article in response to this column. Tell me what you think about this column, including omissions, errors and areas where you disagree or agree with the author. Provide a list of additional sources used in your response. (This list does not count towards the 500 word limit.)