Title :
Context-sensitive access control model and implementation
Author :
Weili Han ; Xiaobo Yao
Author_Institution :
Sch. of Software, Fudan Univ., Shanghai, China
Abstract :
Context is a key factor in making make access control decision in modern information system. But a formal context model is needed to guide research of implementation of context-sensitive access control (CSAC) model. This paper formally defines a context-sensitive access control, which consists of extendable context model, authorization policy model, request model, authorization algorithm, revoke algorithm, access control decision algorithm, and so on. Then the paper introduces some related algorithms and CSAC implementation. Finally, the paper introduces an access control service for enterprise applications which centralizes all access control functions into one service.
Keywords :
authorisation; decision making; formal specification; management information systems; CSAC implementation; access control decision algorithm; authorization algorithm; authorization policy model; context-sensitive access control model; extendable context model; formal context model; information system; request model; revoke algorithm; Access control; Chromium; Computer science; Computer science education; Data security; Educational institutions; Permission; Programming profession; Qualifications; XML;
Conference_Titel :
Computer and Information Technology, 2005. CIT 2005. The Fifth International Conference on
Print_ISBN :
0-7695-2432-X
DOI :
10.1109/CIT.2005.196
