The usage control model (UCON) has been proposed to augment traditional access control models by integrating authorizations, obligations, and conditions and providing the properties of decision continuity and attribute mutability. Several recent work have applied UCON to support security requirements in different computing environments such as resource sharing in collaborative computing systems and data control in remote platforms. In this paper we identify two individual but interrelated problems of the original UCON model and recent implementations: oversimplifying the concept of usage session of the model, and the lack of comprehensive ongoing enforcement mechanism of implementations. We extend the core UCON model with continuous usage sessions thus extensively augment the expressiveness of obligations in UCON, and then propose a general, continuity-enhanced and configurable usage control enforcement engine. Finally we explain how our approach can satisfy flexible security requirements with an implemented prototype for a healthcare information system.

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	{ACF}ITU-T Rec X.812 (1995) | ISO/IEC 10181-3:1996. Security frameworks for open systems: Access control framework. Technical report, 1996.
	2	Agreiter Berthold , Muhammad Alam , Ruth Breu , Michael Hafner , Alexander Pretschner , Jean-Pierre Seifert , Xinwen Zhang, A technical architecture for enforcing usage control requirements in service-oriented architectures, Proceedings of the 2007 ACM workshop on Secure web services, November 02-02, 2007, Fairfax, Virginia, USA  [doi>10.1145/1314418.1314422]
	3	M. Alam, M. Hafner, M. Memon, and P. Hung. Modeling and enforcing advanced access control policies in healthcare systems with sectet. Mothis, 2007.
	4	Claudio Bettini , Sushil Jajodia , X. Sean Wang , Duminda Wijesekera, Provisions and Obligations in Policy Rule Management, Journal of Network and Systems Management, v.11 n.3, p.351-372, September 2003  [doi>10.1023/A:1025711105609]
	5	C. Bettini , S. Jajodia , X. Wang , D. Wijesekera, Obligation Monitoring in Policy Management, Proceedings of the 3rd International Workshop on Policies for Distributed Systems and Networks (POLICY'02), p.2, June 05-07, 2002
	6	Claudio Bettini , Sushil Jajodia , X. Sean Wang , Duminda Wijesekera, Provisions and obligations in policy management and security applications, Proceedings of the 28th international conference on Very Large Data Bases, p.502-513, August 20-23, 2002, Hong Kong, China
	7	Nicodemos Damianou , Naranker Dulay , Emil Lupu , Morris Sloman, The Ponder Policy Specification Language, Proceedings of the International Workshop on Policies for Distributed Systems and Networks, p.18-38, January 29-31, 2001
	8	Pedro Gama , Paulo Ferreira, Obligation Policies: An Enforcement Platform, Proceedings of the Sixth IEEE International Workshop on Policies for Distributed Systems and Networks, p.203-212, June 06-08, 2005  [doi>10.1109/POLICY.2005.18]
	9	Pedro Gama , Carlos Ribeiro , Paulo Ferreira, A Scalable History-Based Policy Engine, Proceedings of the Seventh IEEE International Workshop on Policies for Distributed Systems and Networks, p.100-112, June 05-07, 2006  [doi>10.1109/POLICY.2006.8]
	10	M. Hafner, R. Mair, R. Breu, B. Agreiter, S. Unterthiner, and T. Schabetsberger. Health@net. Die verteilte elektronische gesundheitsakte- eine fallstudie in modell-getriebenem security engineering. IT-Sicherheitskongress des BSI, 2007.
	11	M. Hilty, D. Basin, and A. Pretschner. On obligations. In Proc. of European Symposium on Research in Computer Security, 2005.
	12	M. Hilty, A. Pretschner, D. Basin, C. Schaefer, and T. Walter. A policy language for distributed usage control. In Proc. of the 12th European Symposium on Research in Computer Security, 2007.
	13	Keith Irwin , Ting Yu , William H. Winsborough, On the modeling and analysis of obligations, Proceedings of the 13th ACM conference on Computer and communications security, October 30-November 03, 2006, Alexandria, Virginia, USA  [doi>10.1145/1180405.1180423]
	14	Jaehong Park , Ravi Sandhu, The UCONABC usage control model, ACM Transactions on Information and System Security (TISSEC), v.7 n.1, p.128-174, February 2004  [doi>10.1145/984334.984339]
	15	Jaehong Park , Ravi Sandhu, Towards usage control models: beyond traditional access control, Proceedings of the seventh ACM symposium on Access control models and technologies, June 03-04, 2002, Monterey, California, USA  [doi>10.1145/507711.507722]
	16	J. Park, X. Zhang, and R. S. Sandhu. Attribute mutability in usage control. In Proc. of the Annual IFIP WG 11.3 Working Conference on Data and Applications Security,, 2004.
	17	Alexander Pretschner , Manuel Hilty , David Basin, Distributed usage control, Communications of the ACM, v.49 n.9, September 2006  [doi>10.1145/1151030.1151053]
	18	A. Pretschner, M. Hilty, F. Casati, and F. Massacci. Usage control in service-oriented architecture. In Proc. of the 4th Intl. Conf. on Trust, Privacy & Security in Digital Business, 2007.
	19	C. Ribeiro, A. Zuquete, P. Ferreira, and P. Guede. Spl: An access control language for security policies with complex constraints. In Proc. of the Network and Distributed System Security Symposium, 2001.
	20	Reiner Sailer , Trent Jaeger , Xiaolan Zhang , Leendert van Doorn, Attestation-based policy enforcement for remote access, Proceedings of the 11th ACM conference on Computer and communications security, October 25-29, 2004, Washington DC, USA  [doi>10.1145/1030083.1030125]
	21	Reiner Sailer , Xiaolan Zhang , Trent Jaeger , Leendert van Doorn, Design and implementation of a TCG-based integrity measurement architecture, Proceedings of the 13th conference on USENIX Security Symposium, p.16-16, August 09-13, 2004, San Diego, CA
	22	R. Sandhu and J. Park. Usage control: A vision for the next generation access control. Inter. Workshop on Mathematical Methods,Models and Architectures for Computer Networks Security, 2003.
	23	Ravi Sandhu , Kumar Ranganathan , Xinwen Zhang, Secure information sharing enabled by Trusted Computing and PEI models, Proceedings of the 2006 ACM Symposium on Information, computer and communications security, March 21-24, 2006, Taipei, Taiwan  [doi>10.1145/1128817.1128820]
	24	Ravi Sandhu , Xinwen Zhang, Peer-to-peer access control architecture using trusted computing technology, Proceedings of the tenth ACM symposium on Access control models and technologies, June 01-03, 2005, Stockholm, Sweden  [doi>10.1145/1063979.1064005]
	25	S. Unterthiner, M. Hafner, R.Breu, and T. Schabetsberger. Endpoint security in elga architekturen. eHealth-Medical Informatics meets eHealth. Vienna, 2007.
	26	G. Vogt. Multiple authoriztion- a model and architecture for increased, practical security. In Proc. of IFIP/IEEE Symposium on Integrated Network Management, 2003.
	27	George Yee , Larry Korba , Ronggong Song, Ensuring Privacy for E-Health Services, Proceedings of the First International Conference on Availability, Reliability and Security, p.321-328, April 20-22, 2006  [doi>10.1109/ARES.2006.59]
	28	Xinwen Zhang , Masayuki Nakae , Michael J. Covington , Ravi Sandhu, A usage-based authorization framework for collaborative computing systems, Proceedings of the eleventh ACM symposium on Access control models and technologies, June 07-09, 2006, Lake Tahoe, California, USA  [doi>10.1145/1133058.1133084]
	29	Xinwen Zhang , Francesco Parisi-Presicce , Ravi Sandhu , Jaehong Park, Formal model and policy specification of usage control, ACM Transactions on Information and System Security (TISSEC), v.8 n.4, p.351-387, November 2005  [doi>10.1145/1108906.1108908]