Access control in collaborative systems

ACM Computing Surveys

Volumn 37, Issue 1, 2005, Pages 29-41

  Tolone, William ^a,c   Ahn, Gail Joon ^a,c   Pai, Tanusree ^a,c   Hong, Seng Phil ^b  

^a UNIVERSITY OF NORTH CAROLINA AT CHARLOTTE   (United States)

^b Korea Advanced Institute of Science and Technology (KAIST)   (South Korea)

^c University of North Carolina at Charlotte   (United States)

Author keywords

Access control; Collaboration; Security models

Indexed keywords

ACCESS CONTROL; COLLABORATION; COLLABORATIVE SYSTEMS; SECURITY MODELS;

MATHEMATICAL MODELS; PROBLEM SOLVING; SECURITY OF DATA;

COMPUTER SUPPORTED COOPERATIVE WORK;

EID: 24344501341     PISSN: 03600300     EISSN: None     Source Type: Journal    
DOI: 10.1145/1057977.1057979     Document Type: Review

References (39)

1. AHN, G.-J. AND SANDHU, R. 2000. Role-based authorization constraints specification. ACM Trans. Inf. Syst. Secur. 3, 4 (Nov.).
2. AHN, G.-J., SANDHU, R., KANG, M., AND PARK, J. 2000. Injecting RBAC to secure a Web-based workflow system. In Proceedings of 5th ACM Workshop on Role-Based Access Control. Berlin, Germany.
3. AHN, G.-J., SHIN, D., AND ZHANG, L. 2004. Role-based privilege management using attribute certificates and delegation. In International Conference on Trust and Privacy in Digital Business. Lecture Notes in Computer Science. Springer-Verlag.
4. AHN, G.-J., ZHANG, L., SHIN, D., AND CHU, B. 2003. Authorization management for role-based collaboration. In IEEE International Conference on System, Man and Cybernetic. Washington, DC. 4128-4214.
5. BERTINO, E., FERRARI, E., AND ATLURI, V. 1999. Specification and enforcement of authorization constraints in workflow management systems. ACM Trans. Inf. Syst. Secur. 2, 1 (Feb.).
6. BERTINO, E., FERRARI, E., AND BONATTI, P. A. 2000. TRBAC: A temporal role-based access control model. In Proceedings of 5th ACM Workshop on Role-Based Access Control. Berlin, Germany.
7. BROTHERS, L., SEMBUGAMOORTHY, V., AND MULLER, M. 1990. Icicle: Groupware for code inspection. In ACM Conference on Computer-Supported Cooperative Work. Los Angeles, CA. 169-181.
8. BULLOCK, A. 1998. SPACE: Spatial access control for collaborative virtual environments. PhD. thesis, University of Notingham.
9. BULLOCK, A. AND BENFORD, S. 1999. An access control framework for multi-user collaborative environments. In ACM GROUP. Phoenix, AZ.
10. COULOURIS, G., DOLLIMORE, J., AND B., R. 1998. Role and task-based access control in the perdis groupware platform. In Proceedings of 3rd ACM Workshop on Role-Based Access Control. Fairfax, VA. 115-121.
11. COVINGTON, M., LONG, W., SRINIVASAN, S., DEY, A., AHAMAD, M., AND ABOWD, G. D. 2001. Securing context-aware applications using environment roles. In ACM Symposium on Access Control Model and Technology. Chantilly, VA.
12. DEWAN, P. AND SHEN, H. 1998. Flexible meta-access control for collaborative applications. In ACM Conference on Computer-Supported Cooperative Work. Seattle, WA.
13. EDWARDS, W. K. 1996. Policies and roles in collaborative applications. In ACM Conference on Computer-Supported Cooperative Work. Cambridge, MA.
14. ELLIS, C. A., GIBBS, S. J., AND REIN, G. L. 1989. Design and use of a group editor. In International Federation for Information Processing Working Group 2.7, Working Conference on Engineering for Human-Computer Interaction. 13-28.
15. FERRAIOLO, D. AND BARKLEY, J. 1997. Specifying and managing role-based access control within a corporate intranet. In Proceedings of 2nd ACM Workshop on Role-Based Access Control. Fairfax, VA. 77-82.
16. FERRAIOLO, D. F., BARKLEY, J. F., AND KUHN, D. R. 1999. A role based access control model and reference implementation within a corporate intranet. ACM Trans. Inf. Syst. Secur. 2, 1 (Feb.).
17. GEORGIADIS, C. K., MAVRIDIS, I., PANGALOS, G., AND THOMAS, R. 2001. Flexible team-based access control using contexts. In ACM Symposium on Access Control Model and Technology. Chantilly, VA.
18. GRIEF, I. AND SARIN, S. 1987. Data sharing in group work. ACM Trans. Inf. Syst. 5, 2 (April), 187-211.
19. JAEGER, T. 1999. On the increasing importance of constraints. In Proceedings of 4th ACM Workshop on Role-Based Access Control. Fairfax, VA. 33-42.
20. JAEGER, T. AND PRAKASH, A. 1996. Requirements of role-based access control for collaborative systems. In ACM Role-based Access Control Workshop. Gaithersburg, MD. 53-64.
21. KANG, M. H., PARK, J. S., AND FROSCHER, J. N. 2001. Access control mechanisms for inter-organizational workflow. In ACM Symposium on Access Control Model and Technology. Chantilly, VA.
22. KAPLAN, S., TOLONE, W., D.P., B., AND BIGNOLI, C. 1992. Flexible active support for collaborative work with conversation builder. In ACM Conference on Computer-Supported Cooperative Work. Toronto, Ontario, Canada. 378-385.
23. LAMPSON, B. 1971. Protection. In 5th Princeton Symposium on Information Science and Systems. 437-443.
24. Reprinted in ACM Operat. Syst. Rev. 8, 1, 18-24, 1974.
25. NEUWIRTH, C. M., KAUFER, D. S., CHANDHOK, R., AND MORRIS, J. H. 1990. Issues in the design of computer support for co-authoring and commenting. In ACM Conference on Computer-Supported Cooperative Work. Los Angeles, CA. 183-195.
26. PARK, J., SANDHU, R., AND AHN, G.-J. 2001. Role-based access control on the web. ACM Trans. Inf. Syst. Secur. 4, 1 (Feb.).
27. SANDHU, R. AND SAMARATI, P. 1994. Access control: Principles and practice. IEEE Communications 32, 9, 40-48.
28. SANDHU, R. S., COYNE, E. J., FEINSTEIN, H. L., AND YOUMAN, C. E. 1996. Role-based access control models. IEEE Computer 29, 2 (Feb.), 38-47.
29. SHEN, H. AND DEWAN, P. 1992. Access control for collaborative environments. In ACM Conference on Computer-Supported Cooperative Work.
30. SHIN, D., AHN, G.-J., AND CHO, S. 2002. Role-based EAM using x.509 attribute certificate. In Proceedings of 16th Annual International Federation for Information Processing Working Group 11.3, Working Conference on Data and Application Security. Cambridge, UK.
31. SIKKEL, K. 1997. A group-based authorization model for cooperative systems. In ACM Conference on Computer-Supported Cooperative Work. 345-360.
32. SOHLENKAMP, M. AND CHWELOS, G. 1994. Integrating communication, cooperation, and awareness: The diva virtual office environment. In ACM Conference on Computer Supported Cooperative Work. Chapel Hill, NC. 331-343.
33. THOMAS, R. 1997. Team-based access control (TMAC). In Proceedings of 2nd ACM Workshop on Role-Based Access Control. Fairfax, VA. 13-19.
34. THOMAS, R. AND SANDHU, R. 1997. Task-based authorization controls (TBAC): Models for active and enterprise-oriented authorization management. In Database Security XI: Status and Prospects, T. Y. Lin and X. Qian, Eds. North-Holland.
35. THOMAS, R. AND SANDHU, R. S. 1994. Conceptual foundations for a model of task-based authorizations. In Proceedings of 7th IEEE Computer Security Foundations Workshop. Franconia, NH. 66-79.
36. WANG, W. 1999. Team-and-role-based organizational context and access control for cooperative hypermedia environments. In ACM Hypertext.
37. YAO, W., MOODY, K., AND BACON, J. 2001. A model of oasis role-based access control and its support for active security. In ACM Symposium on Access Control Model and Technology. ACM. Chantilly, VA.
38. ZHANG, L., AHN, G.-J., AND CHU, B. 2001. A rule-based framework for role-based delegation. In ACM Symposium on Access Control Model and Technology. Chantilly, VA. 153-162.
39. ZHANG, L., AHN, G.-J., AND CHU, B. 2003. A rule-based framework for role-based delegation and revocation. ACM Trans. Inf. Syst. Secur. 6, 3 (Aug.).