ACTkit: A Framework for the Definition and Enforcement of Role, Content and Context-based Access Control Policies

被引：0

作者：

Betarte, G. ^{[1
,3
,4
,5
]}

Gatto, A. ^{[2
,3
]}

Martinez, R. ^{[2
,3
,5
]}

Zipitria, F. ^{[1
,3
,4
,5
]}

机构：

[1] Univ Republica, Inst Computac, Fac Ingn, Montevideo, Uruguay

[2] Tilsor SA, Montevideo, Uruguay

[3] Univ Republ FING UDELAR, Fac Ingn, Montevideo, Uruguay

[4] Inst Computac InCo, Montevideo, Uruguay

[5] Grp Seguridad Informat GSI FING UDELAR, Montevideo, Uruguay

来源：

IEEE LATIN AMERICA TRANSACTIONS | 2012年 / 10卷 / 03期

关键词：

Authorization; RBAC; Application Security; Context-based and Content-based Access Control;

D O I：

暂无

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

This work describes a framework, called ACTkit, for the definition and enforcement of dynamic access control policies on (multi-tiered) information systems. ACTkit embodies a language for defining security policies built out of role-, context- and content-based access control rules and an access control module responsible for the policy enforcement. A model, which has been defined as an extension of Hierarchical RBAC to provide a precise semantics for the security policies, is also presented and discussed.

引用

页码：1742 / 1751

页数：10

共 50 条

[41] Automatic enforcement of location aware user based network access control policies
Tuglular, Tugkan
NEW ASPECTS OF TELECOMMUNICATIONS AND INFORMATICS, 2008, : 49 - 54
[42] Specification and Enforcement of Separation-of-Duty Policies in Role-base Access Control
Lu, Jianfeng
Zhou, Jiaqing
2011 INTERNATIONAL CONFERENCE ON COMPUTER SCIENCE AND NETWORK TECHNOLOGY (ICCSNT), VOLS 1-4, 2012, : 2135 - 2140
[43] Model-Driven Run-Time Enforcement of Complex Role-Based Access Control Policies
Ben Fadhel, Ameni
Bianculli, Domenico
Briand, Lionel C.
PROCEEDINGS OF THE 2018 33RD IEEE/ACM INTERNATIONAL CONFERENCE ON AUTOMTED SOFTWARE ENGINEERING (ASE' 18), 2018, : 248 - 258
[44] CEBAC: A Decentralized Cooperation Enforcement Based Access Control Framework in MANETs
Saremi, Fatemeh
Mashayekhi, Hoda
Movaghar, Ali
Jalili, Rasool
ADVANCES IN COMPUTER SCIENCE AND ENGINEERING, 2008, 6 : 427 - 434
[45] A formal enforcement framework for role-based access control using aspect-oriented programming
Pavlich-Mariscal, J
Michel, L
Demurjian, S
MODEL DRIVEN ENGINEERING LANGUAGES AND SYSTEMS, PROCEEDINGS, 2005, 3713 : 537 - 552
[46] Devices descriptions for context-based content adaptation
Eisinger, R
Manzato, MG
Goularte, R
THIRD LATIN AMERICAN WEB CONGRESS, PROCEEDINGS, 2005, : 121 - 129
[47] Modeling context-based security policies with contextual graphs
Mostéfaoui, GK
Brézillon, P
SECOND IEEE ANNUAL CONFERENCE ON PERVASIVE COMPUTING AND COMMUNICATIONS WORKSHOPS, PROCEEDINGS, 2004, : 28 - 32
[48] A CONTEXT-BASED FRAMEWORK FOR TEACHING INTERCULTURAL COMMUNICATION
BROOME, BJ
COMMUNICATION EDUCATION, 1986, 35 (03) : 296 - 306
[49] Context-based security policies:: A new modeling approach
Brézillon, P
Mostéfaoui, GK
SECOND IEEE ANNUAL CONFERENCE ON PERVASIVE COMPUTING AND COMMUNICATIONS WORKSHOPS, PROCEEDINGS, 2004, : 154 - 158
[50] Context-Based Pedagogy: A Framework From Experience
Kantar, Lina D.
JOURNAL OF NURSING EDUCATION, 2016, 55 (07) : 391 - 395

← 1 2 3 4 5 →