Loading...

Specification of history based constraints for access control in conceptual level

Faghih, F ; Sharif University of Technology | 2010

712 Viewed
  1. Type of Document: Article
  2. DOI: 10.1007/978-3-642-17714-9_14
  3. Publisher: 2010
  4. Abstract:
  5. An access control model for Semantic Web should take the semantic relationships among the entities, defined in the abstract conceptual level (i.e., ontology level), into account. Authorization and policy specification based on a logical model let us infer implicit security policies from the explicit ones based on the defined semantic relationships in the domains of subjects, objects, and actions. In this paper, we propose a logic based access control model for specification and inference of history-constrained access policies in conceptual level of Semantic Web. The proposed model (named TDLBAC-2) enables authorities to state policy rules based on the history of users' accesses using a temporal description logic called script D script L ℛ US. The expressive power of the model is shown through seven different patterns for stating history-constrained access policies. The designed access decision algorithm of the model leverages the inference services of script D script L ℛ US, which facilitates the implementation of an enforcement system working based on the proposed model. Sound inference, history-awareness, ability to define access policies in conceptual level, and preciseness are the main advantages of the proposed model
  6. Keywords:
  7. Access control models ; Access decision ; Access policies ; Conceptual levels ; Description logic ; Expressive power ; Logical models ; Policy specification ; Security policy ; Semantic relationships ; State policy ; Data description ; Inference engines ; Information systems ; Ontology ; Security systems ; Semantic Web ; Semantics ; Specifications ; Temporal logic ; Access control
  8. Source: Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), 17 December 2010 through 19 December 2010, Gandhinagar ; Volume 6503 LNCS , 2010 , Pages 186-200 ; 03029743 (ISSN) ; 9783642177132 (ISBN)
  9. URL: http://link.springer.com/chapter/10.1007%2F978-3-642-17714-9_14