An extended authorization model for Group-Centric Secure Information Sharing

The traditional approach to information sharing focuses on attaching attributes and policies to an object as it is disseminated from producer to consumers in a system. In contrast, group-centric sharing brings subjects and objects together in a group to facilitate sharing. In such contexts, Krishnan thinks that authorizations are influenced by the temporal ordering of subject and object group membership. For instance, some subjects may only get future information added to the group while others may also be able to access previously added information. In this paper, a new authorization model for Group-Centric Secure Information Sharing (g-SIS) is proposed. Authorizations in the model are not only based on the temporal ordering of subject and object group membership but also on the privileges of subject. Thus, we develop a new authorization model in which privileges are considered. We also give the temporal logic specification of the authorizations that contain privilege factors. And we discuss usage scenario to illustrate the practical application in subscription system.