• DocumentCode
    1566264
  • Title

    Context Ontology for Secure Interoperability

  • Author

    Coma, Céline ; Cuppens-Boulahia, Nora ; Cuppens, Frederic ; Cavalli, Ana Rosa

  • Author_Institution
    GET/ENST Bretagne, Cesson-Sevigne
  • fYear
    2008
  • Firstpage
    821
  • Lastpage
    827
  • Abstract
    During interoperability exchanges, organizations are jointly conducting computation and sharing tasks. However, organizations can have different security policies. To guarantee good interoperability exchanges, organizations need to share with other participants information about the services they provide. In addition, to be compliant with security requirements during interoperability, security policies have to be dynamic. One purpose of this paper is to provide this dynamic behavior by taking care about context of access parameters. The context-aware security requirements may be met by using a contextual access control model to define the security policy of each party involved in the interaction, and OrBAC (Organization based Access Control) is an adequate model for this purpose. Elaborating an ontology based security model provides a mean to ensure sharing of understandable knowledge, in particular knowledge needed to derive the authorized accesses and usages during the interoperability sessions. In this paper, we thus suggest a context ontology to be combined with an ontological representation of the OrBAC model and show how it can be used to ease the security rules definition and derivation during interoperability sessions.
  • Keywords
    authorisation; ontologies (artificial intelligence); open systems; OrBAC model; authorized access; collaborative context ontology; context-aware security requirements; contextual access control model; organization based access control; secure interoperability; security policies; Access control; Availability; Collaboration; Collaborative work; Context modeling; Data security; Information security; Internet; Ontologies; Permission; Context; Interoperability; Ontology; OrBAC; Security model;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Availability, Reliability and Security, 2008. ARES 08. Third International Conference on
  • Conference_Location
    Barcelona
  • Print_ISBN
    978-0-7695-3102-1
  • Type

    conf

  • DOI
    10.1109/ARES.2008.133
  • Filename
    4529429