IT 962 Spring 2006

Prof. Ravi Sandhu

Examination 2

03/23/06

 

Due before class on 03/30/06

 

This is an examination.  You must write the answer yourself without ANY discussion with anyone else.  You are free to consult whatever literature you choose to.

 

Provide a statement with your submission stating, I have not given help or taken help from anyone on this assignment.

 

Please submit via email to sandhu@gmu.edu or fax to 253 563 3509 before class on 03/30/06.

 

Answer the following question.

1. Section 5.2 of the following paper
• Jaehong Park and Ravi Sandhu.  “The UCON_ABC Usage Control Model.”  ACM Transactions on Information and System Security, Volume 7, Number 1, February 2004, pages 128-174.

discusses how RBAC₀ and RBAC₁ can be modeled in UCON_preA0.  Discuss in 1000 words or less (total) how to

a)      Model role activation in RBAC₀ and RBAC₁ in UCON, and

b)      How to model RBAC₂ and RBAC₃ in UCON.