A description logic approach to represent and extend RBAC model

Author

Gao-feng, Ji ; Yong, Tang ; Yun-Cheng, Jiang ; Hong-Yi, Yang

Author_Institution

Dept. of Comput. Sci., Sun Yat-sen Univ., Guangzhou

fYear

2006

fDate

3-5 Aug. 2006

Firstpage

151

Lastpage

156

Abstract

Nowadays, all access control models take a system-centric view of protecting resources, and they don´t take the context into account when controlling the permission. With the development of collaborative systems, it causes people to shift the focus on security issues from the protection of individual objects and subjects in isolated computer systems, to the protection of dynamically authorization in collaborative system. In this paper, a new access control model, extending the role-based access control model, is introduced, which models from the collaboration and dynamically manages the permissions through the collaboration context. Then the formalization of new model and reasoning on it by means of description logic ALCQ is proposed. At the end of the paper, problems that need further study are pointed out

Keywords

authorisation; groupware; collaborative systems; description logic; permission management; role-based access control; Access control; Authorization; Collaboration; Collaborative work; Context modeling; Information security; Logic; Permission; Pervasive computing; Protection; ALCQ; CaRBAC; RBAC; context-aware; description logic;

fLanguage

English

Publisher

ieee

Conference_Titel

Pervasive Computing and Applications, 2006 1st International Symposium on

Conference_Location

Urumqi

Print_ISBN

1-4244-0326-x

Electronic_ISBN

1-4244-0326-x

Type

conf

DOI

10.1109/SPCA.2006.297559

Filename

4079130