Download PDF version Contact company
The 2014 SACMAT is the premier forum for researchers advancing the state of the art in access control
Nedap's research paper demonstrated a solution to overcome complexity and enhance organisational scalability

Researchers of Nedap Security Management have taken another perspective on role based access control, which allows for easier management of identities and authorisations and ultimately enhances organisational scalability. Their research paper “Sorting out role based access control” was awarded the Best Paper Award during the 2014 ACM Symposium on Access Control Models and Technologies (SACMAT), the premier forum for researchers advancing the state of the art in access control.

Managing identities and authorisations in any organisation should be simple, regardless the size and scale of the organisation. This improves compliance to the security policy, increases security, decreases human errors and saves time. However, we noticed that when organisations and companies grow, the management of identities and authorisations often becomes prohibitively complex as management in this case involves, for example, more areas, more people and more schedules, and therefore more permissions and more access-rules.

Wouter Kuijper and Victor Ermolaev, both researchers of Nedap Security Management, have addressed this problem and demonstrated a solution to overcome complexity and enhance organisational scalability. They first identified a fragment of the popular framework for modelling access control rules, role based access control (RBAC) which allowed them to make an important conceptual step in developing a new form of RBAC particularly well suited to physical access control. Their introduction of polarissed, bi-sorted role based access control suggests to treat permissions via demarcations separately from subjects via proper roles, moreover it allows safe and understandable mixing of positive specification style (i.e.: saying who has access) and negative specification style (i.e.: saying who does not have access).

Managing identities and authorisations
in any organisation should be simple,
regardless the size and scale of the
organisation

In contrast, ‘classic’ role based access control does not distinguish proper roles from demarcations and it does not allow the negative specification style to be used. The researchers then propose a third dimension where the 2 administrative perspectives are linked up, which is access management itself, now recovered on a more manageable abstraction level, and much more suitable to the responsibilities of security officers working in large organisations. The decoupling of the 2 administrative perspectives has several benefits for practitioners working within physical security and ultimately leads to more organisational scalability. Presented at the 2014 ACM Symposium on Access Control Models and Technologies (SACMAT) in London, Ontario the research was awarded the Best Paper Award. The SACMAT symposium is organised by the ACM Special Interest group in Security Audit and Control (SIGSAC). It is the premier forum for researchers advancing the state of the art in access control.

Download PDF version Download PDF version

Related videos

Revolutionise security management: A tour of Wavestore's Health Monitor

Revolutionise security management: A tour of Wavestore's Health Monitor
Enhanced security with S617 video door station

Enhanced security with S617 video door station
Remote Guarding Video Series Part 1: Overview and Basics.

Remote Guarding Video Series Part 1: Overview and Basics.

In case you missed it

Genetec innovations transform MENA security at Intersec 2025
Genetec innovations transform MENA security at Intersec 2025

Genetec Inc., the global pioneer in enterprise physical security software, will demonstrate the latest innovations in advanced physical security solutions designed to meet the regi...

2024 was a big year for M&A in the security market
2024 was a big year for M&A in the security market

Big news on the mergers and acquisitions (M&A) front is closing out 2024, a year in which several shifts changed the face of the physical security manufacturer community. Ann...

Enhancing collaboration in physical security operations
Enhancing collaboration in physical security operations

In the past, security and IT teams operated independently, but today collaboration is critical. Modern security systems rely on various devices and systems that are linked to inter...

Featured white papers
Maximising security and performance

Maximising security and performance

Download
Guide for HAAS: New choice of SMB security system

Guide for HAAS: New choice of SMB security system

Download
Security practices for hotels

Security practices for hotels

Download
Access control system planning phase 2

Access control system planning phase 2

Download
The key to unlocking K12 school safety grants

The key to unlocking K12 school safety grants

Download
Quick poll
What is the most significant challenge facing smart building security today?
More events news
Dallmeier to celebrate 30th anniversary with "Octoberfest" at Security Essen 2014

Dallmeier to celebrate 30th anniversary with "Octoberfest" at Security Essen 2014
Y3K experiences increase in visitor numbers at IFSEC 2014

Y3K experiences increase in visitor numbers at IFSEC 2014
Dahua Technology holds roadshow with local distributor Videotrend in Milan, Italy

Dahua Technology holds roadshow with local distributor Videotrend in Milan, Italy
Featured products
Milesight 4x5MP AI Multi-Directional Camera

Milesight 4x5MP AI Multi-Directional Camera
Anviz AI-driven Fisheye Dome Network Camera

Anviz AI-driven Fisheye Dome Network Camera
Honeywell SMX: Cybersecurity for Operational Environments

Honeywell SMX: Cybersecurity for Operational Environments