ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
Role-based access control in ambient and remote space
Full text PdfPdf (262 KB)
Source Symposium on Access Control Models and Technologies archive
Proceedings of the ninth ACM symposium on Access control models and technologies table of contents
Yorktown Heights, New York, USA
SESSION: Next generation access control models table of contents
Pages: 21 - 30  
Year of Publication: 2004
ISBN:1-58113-872-5
Authors
H. F. Wedde  University of Dortmund, Dortmund, Germany
Mario Lischka  University of Dortmund, Dortmund, Germany
Sponsors
ACM: Association for Computing Machinery
SIGSAC: ACM Special Interest Group on Security, Audit, and Control
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 2,   Downloads (12 Months): 40,   Citation Count: 5
Additional Information:

abstract   references   cited by   index terms   collaborative colleagues  

Tools and Actions: Request Permissions Request Permissions    Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/990036.990040
What is a DOI?

ABSTRACT

In the era of Ubiquitous Computing and world-wide data transfer mobility, as an innovative aspect of professional activities, imposes new andcomplex problems of mobile and distributed access to information,services, and on--line negotiations for this purpose. This paperrestricts itself to presenting a distributed and location--dependentRBAC approach which is multi--layered. Also an adapted form ofAdministration Nets is presented whichallows the scheduling of distributed on--line processes for automatedlocation--dependent negotiating procedures, and for provingtheir correctness. Examples are discussed in some detail.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
W. M. P. van der Aalst. The Application of Petri Nets to Work Flow Management. The Journal of Circuits, Systems and Computers, 8(1):21--66, 1998.
 
2
Elisa Bertino , Claudio Bettini , Elena Ferrari , Pierangela Samarati, A Temporal Access Control Mechanism for Database Systems, IEEE Transactions on Knowledge and Data Engineering, v.8 n.1, p.67-80, February 1996  [doi>10.1109/69.485637]
3
Elisa Bertino , Claudio Bettini , Elena Ferrari , Pierangela Samarati, An access control model supporting periodicity constraints and temporal reasoning, ACM Transactions on Database Systems (TODS), v.23 n.3, p.231-285, Sept. 1998  [doi>10.1145/293910.293151]
 
4
M. Covington, M. Moyer, and M. Ahamad. Generalized role-based access control for securing future applications. In 23rd National Information Systems Security Conference, Baltimore, MD, October 2000.
5
Michael J. Covington , Wende Long , Srividhya Srinivasan , Anind K. Dev , Mustaque Ahamad , Gregory D. Abowd, Securing context-aware applications using environment roles, Proceedings of the sixth ACM symposium on Access control models and technologies, p.10-20, May 2001, Chantilly, Virginia, United States  [doi>10.1145/373256.373258]
 
6
Joan Daemen and Vincent Rijmen. Rijndael for AES. In NIST, editor, The Third Advanced Encryption Standard Candidate Conference, April 13-14, 2000, New York, NY, USA, pages 343--347, Gaithersburg, MD, USA, 2000. National Institute for Standards and Technology.
 
7
K. Ductal, M. Bogdanowisz, F. Scapolo, J. Leijten, and J.-C. Burgelman, editors. Scenarios for Ambient Intelligence in 2010, IPTS Seville, February 2001. European Commission - Information Society Directorate-General. ISBN 92-894-0735-2.
 
8
T. ElGamal. A public-key cryptosystem and a signature scheme bases on discrete logarithms. IEEE Transactions on Information Theory, IT 31(4):469--472, 1985.
 
9
The European Parliament and the Council. On the protection of individuals with regard to the processing of personal data and on the free movement of such data, Oct 24 1995. Directive 95/46/EC.
10
David F. Ferraiolo , Ravi Sandhu , Serban Gavrila , D. Richard Kuhn , Ramaswamy Chandramouli, Proposed NIST standard for role-based access control, ACM Transactions on Information and System Security (TISSEC), v.4 n.3, p.224-274, August 2001  [doi>10.1145/501978.501980]
 
11
Hartmann J. Genrich , Kurt Lautenbach, The Analysis of Distributed Systems by Means of Predicate ? Transition-Nets, Proceedings of the International Sympoisum on Semantics of Concurrent Computation, p.123-147, July 02-04, 1979
 
12
Carlo Ghezzi , Dino Mandrioli , Sandro Morasca , Mauro Pezzè, A Unified High-Level Petri Net Formalism for Time-Critical Systems, IEEE Transactions on Software Engineering, v.17 n.2, p.160-172, February 1991  [doi>10.1109/32.67597]
 
13
Sushil Jajodia , Pierangela Samarati , V. S. Subrahmanian, A Logical Language for Expressing Authorizations, Proceedings of the 1997 IEEE Symposium on Security and Privacy, p.31, May 04-07, 1997
14
Sushil Jajodia , Pierangela Samarati , V. S. Subrahmanian , Eliza Bertino, A unified framework for enforcing multiple access control policies, Proceedings of the 1997 ACM SIGMOD international conference on Management of data, p.474-485, May 11-15, 1997, Tucson, Arizona, United States
15
James B. D. Joshi , Basit Shafiq , Arif Ghafoor , Elisa Bertino, Dependencies and separation of duty constraints in GTRBAC, Proceedings of the eighth ACM symposium on Access control models and technologies, June 02-03, 2003, Como, Italy  [doi>10.1145/775412.775420]
16
Gustaf Neumann , Mark Strembeck, An approach to engineer and enforce context constraints in an RBAC environment, Proceedings of the eighth ACM symposium on Access control models and technologies, June 02-03, 2003, Como, Italy  [doi>10.1145/775412.775421]
17
Sejong Oh , Ravi Sandhu, A model for role administration using organization structure, Proceedings of the seventh ACM symposium on Access control models and technologies, June 03-04, 2002, Monterey, California, USA  [doi>10.1145/507711.507737]
18
R. L. Rivest , A. Shamir , L. Adleman, A method for obtaining digital signatures and public-key cryptosystems, Communications of the ACM, v.21 n.2, p.120-126, Feb. 1978  [doi>10.1145/359340.359342]
 
19
Bruce Schneier, Applied cryptography (2nd ed.): protocols, algorithms, and source code in C, John Wiley & Sons, Inc., New York, NY, 1995
 
20
The U.S. Department of Commerce. Safe Harbor Privacy Principles, July, 21 2000. http://www.export.gov/safeharbor/SHPRINCIPLESFINAL.htm.
 
21
R. Valk. Infinitive behaviour of petri nets. Theoretical Computer Science, 25:311--341, 1983.
22
Horst F. Wedde , Mario Lischka, Modular authorization, Proceedings of the sixth ACM symposium on Access control models and technologies, p.97-105, May 2001, Chantilly, Virginia, United States  [doi>10.1145/373256.373274]
 
23
Horst F. Wedde and Mario Lischka. Composing Heterogenous Access Policies between Organizations. In Proceedings of the IADIS International Conference e-Society 2003, Lisbon/ Portuagal, June, 3-6 2003. International Association for Development of the Information Society.
24
Horst F. Wedde , Mario Lischka, Cooperative role-based administration, Proceedings of the eighth ACM symposium on Access control models and technologies, June 02-03, 2003, Como, Italy  [doi>10.1145/775412.775416]

CITED BY  5
Horst F. Wedde , Mario Lischka, Modular authorization and administration, ACM Transactions on Information and System Security (TISSEC), v.7 n.3, p.363-391, August 2004
Boris Dragovic , Jon Crowcroft, Information exposure control through data manipulation for ubiquitous computing, Proceedings of the 2004 workshop on New security paradigms, September 20-23, 2004, Nova Scotia, Canada
Hua Wang , Yanchun Zhang , Jinli Cao, Ubiquitous computing environments and its usage access control, Proceedings of the 1st international conference on Scalable information systems, p.6-es, May 30-June 01, 2006, Hong Kong
Carlos Sanchez , Le Gruenwald , Mauricio Sanchez, A Monte Carlo framework to evaluate context based security policies in pervasive mobile environments, Proceedings of the 6th ACM international workshop on Data engineering for wireless and mobile access, June 10-10, 2007, Beijing, China
Hua Wang , Yanchun Zhang , Jinli Cao, Access control management for ubiquitous computing, Future Generation Computer Systems, v.24 n.8, p.870-878, October, 2008

INDEX TERMS

Primary Classification:
  D. Software
  D.4 OPERATING SYSTEMS
      D.4.6 Security and Protection
          Subjects: Access controls

Additional Classification:
  K. Computing Milieux
  K.6 MANAGEMENT OF COMPUTING AND INFORMATION SYSTEMS
      K.6.5 Security and Protection (D.4.6, K.4.2)


General Terms:
Management, Security


Keywords:
petri-nets, spatial, work-flow

Collaborative Colleagues:
H. F. Wedde: colleagues
Mario Lischka: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player