Information flow analysis on role-based access control model
Information flow analysis is a necessary step to determine the information security for a given system. In this paper, we introduce an object oriented role-based access control model (ORBAC) and illustrate that the confinement problem may occur on the ORBAC based system. In order to
deal with the problem, a technique called information flow analysis is proposed. Moreover, under the principle of mandatory access control (MAC) security policy, a role set assignment method is developed and proved to solve the confinement problem on ORBAC.