Title: Comparison of Attribute Based Access Control (ABAC) Model and Rule Based Access (RBAC) to Digital Evidence Storage (DES)

Issue Number: Vol. 7, No. 3
Year of Publication: Sep - 2018
Page Numbers: 275-282
Authors: Moh Fadly Panende , Yudi Prayudi, Imam Riadi
Journal Name: International Journal of Cyber-Security and Digital Forensics (IJCSDF)
- Hong Kong
DOI:  http://dx.doi.org/10.17781/P002451


Digital Evidence Storage (DES) should have been established not only using simple authentication and authorization methods, namely authentication and authorization processes of username and password only, but also had to use more complex authentication and authorization processes by implementing rule policy as the determiner in request access. RBAC was an access control that worked based on user role, while ABAC was an access control model which its work principles was based on the attribute. Meanwhile, XACML is a programming language that specifies RBAC and ABAC policies using XML format. This research was aimed to make comparison toward two access control models which was acknowledged to be suitable for being implemented on DES. The implementation of ABAC is to increase DES security level. The final result of this research was the creation of a better access control model on DES system according to RBAC and ABAC models comparison.