A semantic-based access control mechanism using semantic technologies

Subscribe (Full Service)


	Search: The ACM Digital Library The Guide

	Feedback

A semantic-based access control mechanism using semantic technologies

Full text

Pdf (1.01 MB)

Source

International Conference on Security of Information and Networks archive
Proceedings of the 2nd international conference on Security of information and networks table of contents

Famagusta, North Cyprus

SESSION: AC.2 AC: access control and security assurance table of contents

Pages 258-267

Year of Publication: 2009

ISBN:978-1-60558-412-6

Authors

Moussa Amir Ehsan	Sharif University of Technology, Tehran, Iran
Morteza Amini	Sharif University of Technology, Tehran, Iran
Rasool Jalili	Sharif University of Technology, Tehran, Iran

Sponsor

SIGSAC: ACM Special Interest Group on Security, Audit, and Control

Publisher

ACM New York, NY, USA

Bibliometrics

Downloads (6 Weeks): 27, Downloads (12 Months): 28, Citation Count: 0

Additional Information:

abstract references index terms

Tools and Actions:	Request Permissions Review this Article Save this Article to a Binder Display Formats: BibTeX EndNote ACM Ref

DOI Bookmark:	Use this link to bookmark this Article: http://doi.acm.org/10.1145/1626195.1626259 What is a DOI?

ABSTRACT

In order to overcome the shortcomings of the recent frameworks and mechanisms for semantic-based access control, this paper presents a semantic-based, context-aware, and multi-domain enabled framework implementing a semantic-based access control mechanism for Semantic Web. The access control framework is based on the MA(DL)² model, which takes the semantic relationships among different entities into account. The framework handles the Semantic Web context by classifying and representing it through an ontology. Considering the MA(DL)² model, the framework assumes Semantic Web having some overlapped domains, which each contains an authority and a security agent. As a domain authority responsibility is to specify the domain policies, its agent is to enforce them. The mechanism is designed using the semantic technologies, which make it fully consistent with the environment. The paper clarifies the usability of the designed mechanism through some examples of an elections system case study.

REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	ITU-T recommendation x.509: Information technology--open systems interconnection--the directory: Public-key and attribute certificate frameworks. Technical report, 2001.
	2	M. Amini and R. Jalili. Specification and inference of authorization and obligation policies using deontic logic for semantic-aware environments. In 4th Iranian Society of Cryptology Conference (ISCC'07), pages 175--184, Tehran, Iran, 2007.
	3	M. Amini and R. Jalili. A calculus for composite authorities' policy derivation in shared domains of pervasive computing environments. In IEEE International Workshop on Internetand Distributed Computing Systems (IDCS'08), Bangladesh, 2008.
	4	D. Clarke, J.-E. Elien, C. Ellison, M. Fredette, A. Morcos,and R. L. Rivest. Certificate chain discovery in spki/sdsi. Journal of Computer Security, 9(4):285--322, 2001.
	5	E. Damiani, S. D. C. d. Vimercati, C. Fugazza, and P. Samarati. Semantics-aware privacy and access control: motivation and preliminary results. In 1st Italian Semantic Web Workshop on Semantic Web Applications and Perspectives (SWAP'04), Ancona, Italy, 2004.
	6	G. Denker, S. Nguyen, and A. Ton. Owl-s semantics ofsecurity web services: a case study. In 1st European Semantic Web Symposium, volume 3053/2004 of Lecture Notes in Computer Science, pages 240--253, Heraklion, Greece, 2004. Springer Berlin / Heidelberg.
	7	M. A. Ehsan, M. Amini, and R. Jalili. Using semantican notation to design security mechanisms based on the semantic-aware access control MA(DL)². In 5th International ISC Coneference on Inforamtion Security and Cryptology (ISCISC'08), pages 3--14, Tehran, Iran, 2008.
	8	M. A. Ehsan, M. Amini, and R. Jalili. Handling context in asemantic-based access control framework. In 5th International Symposium on Frontiers of Information Systems and Network Applications (FINA'09), Bradford, UK, 2009.
	9	S. Javanmardi, M. Amini, and R. Jalili. An access control model for protecting semantic web resources. In 2nd International Semantic Web Policy Workshop (SWPW'06), pages 32--46, Athens, GA, USA, 2006.
	10	S. Javanmardi, M. Amini, R. Jalili, and Y. GanjiSaffar. Sbac: A semantic based access control model. In 11th Nordic Workshop on Secure IT-systems (NordSec'06), Linkping, Sweden, 2006.
	11	L. Kagal, T. Berners-Lee, D. Connolly, and D. Weitzner. Promoting interoperability between heterogeneous policy domains. Technical report, W3, 2006.
	12	L. Kagal, T. Berners-Lee, D. Connolly, and D. Weitzner. Using semantic web technologies for policy management on the web. In 21st National Conference on Artificial Intelligence (AAAI'06), Boston, Massachusetts, USA, 2006.
	13	L. Kagal, T. Finin, and A. Joshi. A policy language for apervasive computing environment. In 4th IEEE International Workshop on Policies for Distributed Systems and Networks, pages 63--74, Lake Como, Italy, 2003.
	14	T. Moses. Xacml 1.1 specification set. Technical report, Oasis, 2003.
	15	T. Moses. Xacml 2.0 specification set. Technical report,Oasis, 2005.
	16	A. Naumenko. Semantics-based access control ontologies and feasibility study of policy enforcement function. In 3rd International Conference on Web Information Systems and Technologies (WEBIST'07), volume Internet Technologies, Barcelona, Spain, 2007. INSTICC Press.
	17	A. Naumenko, A. Katasonov, and V. Terziyan. A security framework for smart ubiquitous industrial resources. In 3rd International Conference on Interoperability for Enterprise Software and Applications (IESA'07), pages 183--194, Madeira Island, Portugal, 2007. Springer.
	18	A. Noorollahi, M. Amini, and R. Jalili. A semantic aware access control model with real time constraints on history of accesses. In International Workshop on Secure Information Systems (SIS'08), Wisla, Poland, 2008.
	19	A. Noorollahi, M. Amini, and R. Jalili. A temporal semantic-based access control model. In 13th International CSI Computer Science Conference (CSICC'08), Kish Island, Iran, 2008. Springer-Verlag.
	20	A. Noorollahi, M. Amini, R. Jalili, and J. H. Jafarian. Asemantic aware history based access control model using logical time approach. In IEEE International Workshop on Internet and Distributed Computing Systems (IDCS'08), Khulna, Bangladesh, 2008.
	21	M. I. Yague, M.-d.-M. Gallardo, and A. Mana. Semantic access control model: A formal specification. In European Symposium On Research In Computer Security (ESORICS), volume LNCS 3679, pages 24--43, Milano, Italy, 2005. Springer-Verlag.
	22	M. I. Yague, A. Mana, and J. Lopez. A metadata-based access control model for web services. Internet Research, 15(1):99--116, 2005.
	23	M. I. Yague, A. Mana, J. Lopez, and J. M. Troya. Applying the semantic web layers to access control. In the DEXA 2003 Workshop on Web Semantics (WebS'03), pages 622--62,Prague, Czech Republic, 2003. IEEE Computer Society.