Title :
Description Logic Modeling of Temporal Attribute-Based Access Control
Author :
Jin, Peng ; Fang-chun, Yang
Author_Institution :
State Key Lab. of Networking & Switching Technol., Beijing Univ. of Posts & Telecommun., China
Abstract :
In large-scale open systems like Internet, attribute based access control is more appropriate than some other access control mechanisms. A fragment of description logic can be used to represent and reason about policies of attribute-based access control, because with logic descriptions, policies have a clear syntax and semantics. Further more, with the description logic modeling, ABAC policies and subject attributes assertions are easy to be integrated with semantic Web language which is designed to facilitate the machine interpretability and interoperability in distributed environment. The description logic representation is flexible to hold broad scope of information about users and contexts. The temporal properties of access control are also specified in our model.
Keywords :
authorisation; semantic Web; temporal logic; ABAC policies; Internet; description logic modeling; distributed environment; large-scale open systems; logic descriptions; machine interoperability; machine interpretability; semantic Web language; subject attributes assertions; temporal attribute-based access control; Access control; Authorization; Information security; Laboratories; Large-scale systems; Logic; Ontologies; Open systems; Permission; Semantic Web; Access Control; Description logic; Security;
Conference_Titel :
Communications and Electronics, 2006. ICCE '06. First International Conference on
Conference_Location :
Hanoi
Print_ISBN :
1-4244-0568-8
Electronic_ISBN :
1-4244-0569-6
DOI :
10.1109/CCE.2006.350888
