ACTkit: A Framework for the Definition and Enforcement of Role, Content and Context-based Access Control Policies

被引：0

作者：

Betarte, G. ^{[1
,3
,4
,5
]}

Gatto, A. ^{[2
,3
]}

Martinez, R. ^{[2
,3
,5
]}

Zipitria, F. ^{[1
,3
,4
,5
]}

机构：

[1] Univ Republica, Inst Computac, Fac Ingn, Montevideo, Uruguay

[2] Tilsor SA, Montevideo, Uruguay

[3] Univ Republ FING UDELAR, Fac Ingn, Montevideo, Uruguay

[4] Inst Computac InCo, Montevideo, Uruguay

[5] Grp Seguridad Informat GSI FING UDELAR, Montevideo, Uruguay

来源：

IEEE LATIN AMERICA TRANSACTIONS | 2012年 / 10卷 / 03期

关键词：

Authorization; RBAC; Application Security; Context-based and Content-based Access Control;

D O I：

暂无

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

This work describes a framework, called ACTkit, for the definition and enforcement of dynamic access control policies on (multi-tiered) information systems. ACTkit embodies a language for defining security policies built out of role-, context- and content-based access control rules and an access control module responsible for the policy enforcement. A model, which has been defined as an extension of Hierarchical RBAC to provide a precise semantics for the security policies, is also presented and discussed.

引用

页码：1742 / 1751

页数：10

共 50 条

[31] A context-based tracker switching framework
Tyagi, Ambrish
Davis, James W.
2008 IEEE WORKSHOP ON MOTION AND VIDEO COMPUTING, 2008, : 153 - 160
[32] A context-based framework for mental representation
Giunchiglia, F
Bouquet, P
PROCEEDINGS OF THE TWENTIETH ANNUAL CONFERENCE OF THE COGNITIVE SCIENCE SOCIETY, 1998, : 392 - 397
[33] Cryptographic Enforcement of Role-Based Access Control
Crampton, Jason
FORMAL ASPECTS OF SECURITY AND TRUST, 2011, 6561 : 191 - 205
[34] Security policies definition and enforcement utilizing policy control function framework in 5G
Gomez, German Peinado
Batalla, Jordi Mongay
Miche, Yoan
Holtmanns, Silke
Mavromoustakis, Constandinos X.
Mastorakis, George
Haider, Noman
COMPUTER COMMUNICATIONS, 2021, 172 : 226 - 237
[35] Static Enforcement of Role-Based Access Control
Ali, Asad
Fernandez, Maribel
ELECTRONIC PROCEEDINGS IN THEORETICAL COMPUTER SCIENCE, 2014, (163): : 36 - 50
[36] Context-Based Blockchain Platform Definition and Analysis Methodology
Ribeiro, Sergio Luis
Nakamura, Emilio Tissato
ADVANCES IN CYBER SECURITY (ACES 2019), 2020, 1132 : 74 - 88
[37] Context-based service access for train travelers
Hulsebosch, B
Salden, A
Bargh, M
AMBIENT INTELLIGENCE, PROCEEDINGS, 2004, 3295 : 84 - 87
[38] A policy description language for context-based access control and adaptation in ubiquitous environment
Ahn, Joonseon
Chang, Byeong-Mo
Doh, Kyung-Goo
EMERGING DIRECTIONS IN EMBEDDED AND UBIQUITOUS COMPUTING, 2006, 4097 : 650 - 659
[39] A Quality-Aware Context-Based Access Control Model for Ubiquitous Applications
Bringel Filho, Jose
Martin, Herve
2008 THIRD INTERNATIONAL CONFERENCE ON DIGITAL INFORMATION MANAGEMENT, VOLS 1 AND 2, 2008, : 115 - 120
[40] Practical and Efficient Cryptographic Enforcement of Interval-Based Access Control Policies
Crampton, Jason
ACM TRANSACTIONS ON INFORMATION AND SYSTEM SECURITY, 2011, 14 (01)

← 1 2 3 4 5 →