Title :
Temporal Access Control Based on Multiple Subjects
Author :
Xu, Changzheng ; Wang, Qingxian ; Zhang, Weiming ; Ding, Yali
Author_Institution :
Nat. Digital Switching Syst. Eng. & Technol. Res. Center, Zhengzhou, China
Abstract :
In the traditional history-based access control model, the policy is designed regarding only one subject. This policy is vulnerable, because if multi-subjects who have common interests collaborate, the access control may be bypassed. In addition, designing policy for multi-subjects´ access is indispensable for many online applications. Towards this problem, a temporal access control based on multi-subjects is proposed in this paper. The main idea is to make decision of access according to active multi-subjects´ history executions. A policy language is introduced and its syntax and semantics are defined formally. Finally, a policy verification algorithm is given and an example is used to illustrate it.
Keywords :
authorisation; formal verification; history based access control; multiple subjects; policy language; policy verification algorithm; temporal access control; Access control; Collaboration; Design engineering; History; Information security; Logic; Multimedia systems; National security; Switching systems; Systems engineering and theory; access control; access operation history; multi-subjects; temporal;
Conference_Titel :
Multimedia Information Networking and Security, 2009. MINES '09. International Conference on
Conference_Location :
Hubei
Print_ISBN :
978-0-7695-3843-3
Electronic_ISBN :
978-1-4244-5068-8
DOI :
10.1109/MINES.2009.22
