COMPUTER SCIENCE
and ENGINEERING

At present, many custom software systems generally adopt role-based access control. In such systems, a specific user may be authorized to one or several roles, and each role and its permissions are pre-defined at the beginning of the system design. It is difficult for managers to dynamically define new roles for users with personalized permissions during system runtime after system delivery. This paper proposes a runtime customizable access control model for the custombuilt cooperation software system which has many access objects and fewer users, each user has different access requirements, and each user’s requirements are uncertainty and can only be confirmed after a cooperation project has been launched. To verify the validity of the model, a garment design cooperation system with this access control model was implemented as a case study. Experiments show that with the use of this model, managers can dynamically create personalized roles and authorize them to different project members when a new cooperation project is launching. The model and the case can help researchers and developers to design and develop their own runtime customizable access control model and custom-built cooperation software system.

Access control, Customizable, Rights management, Dynamic authorization