Edemilson S. Silva,  Altair O. Santin,  Edgard Jamhour,  Carlos A. Maziero,  Emir Toktar. 

This work presents a proposal of extension to the model of Role-Based Access control (RBAC) to support activities that demands mutability in their authorization attributes in runtime. Such activities cannot be subdivided in a set of subtasks executed sequentially and nor they can be accomplished by a single role. The approach presented allows the creation of quorum role, which can only be activated in a session with endorsement of a quorum of other roles. A prototype illustrates the application of proposal in a network management scenario. In the illustrative scenario, a previously defined set of roles, by endorsement, activates a quorum role to perform a management task without the participation of the network administrator role.

http://www.lbd.dcc.ufmg.br/colecoes/sbseg/2007/0017.pdf

Processando consulta.