IT 962 Spring 2006

Prof. Ravi Sandhu

Examination 2



Due before class on 03/30/06


This is an examination.  You must write the answer yourself without ANY discussion with anyone else.  You are free to consult whatever literature you choose to.


Provide a statement with your submission stating, I have not given help or taken help from anyone on this assignment.


Please submit via email to or fax to 253 563 3509 before class on 03/30/06.


Answer the following question.

  1. Section 5.2 of the following paper
    • Jaehong Park and Ravi Sandhu.  “The UCONABC Usage Control Model.”  ACM Transactions on Information and System Security, Volume 7, Number 1, February 2004, pages 128-174.

discusses how RBAC0 and RBAC1 can be modeled in UCONpreA0.  Discuss in 1000 words or less (total) how to

a)      Model role activation in RBAC0 and RBAC1 in UCON, and

b)      How to model RBAC2 and RBAC3 in UCON.