ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
Semantic access control for information interoperation
Full text PdfPdf (491 KB)
Source Symposium on Access Control Models and Technologies archive
Proceedings of the eleventh ACM symposium on Access control models and technologies table of contents
Lake Tahoe, California, USA
SESSION: Information sharing table of contents
Pages: 237 - 246  
Year of Publication: 2006
ISBN:1-59593-353-0
Authors
Chi-Chun Pan  The Pennsylvania State University, University Park, PA
Prasenjit Mitra  The Pennsylvania State University, University Park, PA
Peng Liu  The Pennsylvania State University, University Park, PA
Sponsors
SIGSAC: ACM Special Interest Group on Security, Audit, and Control
ACM: Association for Computing Machinery
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 13,   Downloads (12 Months): 129,   Citation Count: 0
Additional Information:

abstract   references   index terms   collaborative colleagues  

Tools and Actions: Request Permissions Request Permissions    Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/1133058.1133091
What is a DOI?

ABSTRACT

Sharing information across different organizations is a critical problem. Using security enforcement mechanisms, accessing databases is limited to authorized users only. However, if databases and access control policies are syntactically and schematically heterogeneous, information interoperation becomes a crucial challenge. In order to allow users from multiple organizations to access databases, a better access control model is desired. In this paper, we propose Semantic Access Control based on popular Role-Base Access Control. Semantic Access Control provides secure access control to databases while resolving the heterogeneity among the databases. We present Semantic Access Control Enabler (SACE), a novel middleware-based system that has been designed and implemented to enable Semantic Access Control on the Web. SACE is a middleware system that requires only a few changes to be done on the legacy systems of any organizations involved. Unlike traditional mediator technologies, we integrate heterogeneity resolution and access control into one process. We show that despite performing ontology mappings and query and data translations our toolkit still provides acceptable performance.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
Resource description framework(rdf) model and syntax specification, w3c recommendation http://www.w3.org/tr/rec-rdf-syntax. 1999.
 
2
Sudhir Agarwal , Barbara Sprick, Access Control for Semantic Web Services, Proceedings of the IEEE International Conference on Web Services (ICWS'04), p.770, June 06-09, 2004  [doi>10.1109/ICWS.2004.17]
 
3
S. Agarwal, B. Sprick, and S. Wortmann. Credential based access control for semantic web services. In 2004 AAAI Spring Symposium Series, March 2004.
 
4
G. J. Ahn and B. Mohan. Secure sharing role-based delegation. Journal of Network and Computer Applications, 2004.
 
5
S. Bechhofer, F. van Harmelen, J. Hendler, I. Horrocks, D.L. McGuinness, P.F. Patel-Schneider, and L.A. Stein. Owl web ontology language reference. Technical report, W3C.
6
Jeremy J. Carroll , Ian Dickinson , Chris Dollin , Dave Reynolds , Andy Seaborne , Kevin Wilkinson, Jena: implementing the semantic web recommendations, Proceedings of the 13th international World Wide Web conference on Alternate track papers & posters, May 19-21, 2004, New York, NY, USA  [doi>10.1145/1013367.1013381]
 
7
Isabel F. Cruz , Huiyong Xiao, Using a Layered Approach for Interoperability on the Semantic Web, Proceedings of the Fourth International Conference on Web Information Systems Engineering, p.221, December 10-12, 2003
 
8
E. Damiani, S. De Capitani di Vimercati, C. Fugazza, and P. Samarati. Extending policy languages to the semantic web. In ICWE, pages 330--343, 2004.
 
9
Steven Dawson , Shelly Qian , Pierangela Samarati, Providing Security and Interoperation of HeterogeneousSystems, Distributed and Parallel Databases, v.8 n.1, p.119-145, Jan. 2000  [doi>10.1023/A:1008787317852]
 
10
Sabrina De Capitani di Vimercati , Pierangela Samarati, Authorization specification and enforcement in federated database systems, Journal of Computer Security, v.5 n.2, p.155-188, Jan. 1997
 
11
D.F. Ferraiolo and D.R. Kuhn. Role based access control. In 15th National Computer Security Conference. Available from http://csrc.nist.gov/rbac/ on Aug. 30th, 2004, 1992.
 
12
Li Gong , Xiaolei Qian, The Complexity and Composability of Secure Interoperation, Proceedings of the 1994 IEEE Symposium on Security and Privacy, p.190, May 16-18, 1994
 
13
Li Gong , Xiaolei Qian, Computational Issues in Secure Interoperation, IEEE Transactions on Software Engineering, v.22 n.1, p.43-52, January 1996  [doi>10.1109/32.481533]
 
14
Xiaolei Qian, Query Folding, Proceedings of the Twelfth International Conference on Data Engineering, p.48-55, February 26-March 01, 1996
15
Li Qin , Vijayalakshmi Atluri, Concept-level access control for the Semantic Web, Proceedings of the 2003 ACM workshop on XML security, October 31-31, 2003, Fairfax, Virginia  [doi>10.1145/968559.968575]
16
Yuzhong Qu , Xiang Zhang , Huiying Li, OREL: an ontology-based rights expression language, Proceedings of the 13th international World Wide Web conference on Alternate track papers & posters, May 19-21, 2004, New York, NY, USA  [doi>10.1145/1013367.1013457]
 
17
S. Decker S. Melnik. A layered approach to information modeling and interoperability on the web. In ECDL'00 Workshop on the Semantic Web, 2000.
 
18
Mariemma I. Yagüe , Antonio Maña , Javier López , José M. Troya, Applying the Semantic Web Layers to Access Control, Proceedings of the 14th International Workshop on Database and Expert Systems Applications, p.622, September 01-05, 2003
 
19
M. Yague and J. M. Troya. A semantic approach for access control in web services. In Euroweb 2002 Conference. The Web and the GRID: from e-science to e-business, British Computer Society, World Wide Web Consortium, pages 483--494, December 2002.

INDEX TERMS

Primary Classification:
  H. Information Systems
  H.2 DATABASE MANAGEMENT
      H.2.2 Physical Design
          Subjects: Access methods

Additional Classification:
  H. Information Systems
  H.2 DATABASE MANAGEMENT
      H.2.5 Heterogeneous Databases


General Terms:
Security


Keywords:
access control, interoperation, mediator, semantic heterogeneity

Collaborative Colleagues:
Chi-Chun Pan: colleagues
Prasenjit Mitra: colleagues
Peng Liu: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player