TrustBAC - Integrating trust relationships into the RBAC model for access control in open systems

Proceedings of ACM Symposium on Access Control Models and Technologies, SACMAT

Volumn 2006, Issue , 2006, Pages 49-58

  Chakraborty, Sudip ^a   Ray, Indrajit ^a  

^a Colorado State University   (United States)

Author keywords

Access control; RBAC; Trust

Indexed keywords

DATA PRIVACY; INFORMATION RETRIEVAL; MATHEMATICAL MODELS; SECURITY OF DATA;

ACCESS CONTROL; ROLE BASED ACCESS CONTROL (RBAC) MODEL;

OPEN SYSTEMS;

EID: 33748081445     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (31)

1. M. Abadi and C. Fournet. History-based Access Control for Mobile Code. In Proceedings of the 10th Annual Network and Distributed System Security Symposium, pages 107-121, San Diego, California, USA, February 2003.
2. N. R. Adam, V. Atluri, E. Bertino, and E. Ferrari. A Content-Based Authorization Model for Digital Libraries. IEEE Transactions on Knowledge and Data Engineering, 14(2):296-315, March 2002.
3. L. Bauer, M. A. Schneider, and E. W. Felten. A General and Flexible Access-Control System for the Web. In Proceedings of the 11th USENIX Security Symposium, San Francisco, California, USA, August 2002.
4. E. Bertino, B. Catania, and M. L. Damiani. GEO-RBAC: A Spatially Aware RBAC. In Proceedings of the 10th ACM Symposium on Access Control Models and Technologies (SACMAT'05), pages 29-37, Stockholm, Sweeden, June 2005.
5. R. Bhatti, E. Bertino, and A. Ghafoor. A Trust-based Context-Aware Access Control Model for Web-Services. In Proceedings of the IEEE International Conference on Web Services (ICWS'04), pages 184-191, San Diego, California, USA, June 2004.
6. R. Bhatti, J. Joshi, E. Bertino, and A. Ghafoor. Access Control in Dynamic XM-based Web-Services with X-RBAC. In Proceedings of the 1st International Conference on Web Services, Las Vegas, Nevada, USA, June 2003.
7. M. Blaze, J. Feigenbaum, and J. Ioannidis. The KeyNote Trust Management System Version 2. Internet Society, Network Working Group. RFC 2704, 1999.
8. M. Blaze, J. Feigenbaum, and J. Lacy. Decentralized Trust Management. In Proceedings of 17th IEEE Symposium on Security and Privacy, pages 164-173, Oakland, California, USA, May 1996.
9. P. Bonatti and P. Samarati. Regulating Service Access and Information Release on the Web. In Proceedings of the 7th ACM Conference on Computer and Communication Security, pages 134-143, Athens, Greece, November 2000.
10. D. Chadwick, A. Otenko, and E. Ball. Role-Based Access Control with X.509 Attribute Certificates. IEEE Internet Computing, 7(2):62-69, March/April 2003.
11. E. Cohen, R. K. Thomas, W. Winsborough, and D. Shands. Models for Coalition-based Access Control (CBAC). In Proceedings of the 7th ACM Symposium on Access Control Models and Technologies (SACMAT'02), pages 97-106, Monterey, California, USA, June 2002.
12. E. Damiani, S. Vimercati, and P. Samarati. New Paradigm for Access Control in Open Environments. In Proceedings of the 5th IEEE Symposium on Signal Processing and Information Technology (ISSPIT'05), Athens, Greece, December 2005.
13. G. Edjlali, A. Acharya, and V. Chaudhary. History-based Access Control for Mobile Code. In Proceedings of the 5th ACM Conference on Computer and Communication Security (CCS'98), pages 38-48, San Francisco, California, USA, November 1998.
14. D. Ferraiolo and R. Kuhn. Role-Based Access Controls. In Proceedings of the 15th NIST-NCSC National Computer Security Conference, pages 554-563, Bultimore, Maryland, USA, October 1992.
15. D. Ferraiolo, R. Sandhu, S. Gavrila, R. Kuhn, and R. Chandramouli. Proposed NIST Standard for Role-Based Access Control. ACM Transactions on Information and Systems Security, 4(3):224-274, August 2001.
16. C. K. Georgiadis, I. Mavridis, G. Pangalos, and R. K. Thomas. Flexible Team-based Access Control Using Contexts. In Proceedings of the Sixth ACM Symposium on Access Control Models and Technologies (SACMAT'01), pages 21-27, Chantily, Virginia, USA, May 2001.
17. A. Harrington and C. Jensen. Cryptographic Access Control in a Distributed File System. In Proceedings of the 8th ACM Symposium on Access Control Models and Technologies (SACMAT'03), pages 158-165, Como, Italy, June 2003.
18. H.M.Gladney. Access Control for Large Collections. ACM Transactions on Information Systems, 15(2):154-194, April 1997.
19. J. Joshi, E. Bertino, U. Latif, and A. Ghafoor. A Generalized Temporal Role-Based Access Control Model. IEEE Transactions on Knowledge and Data Engineering, 17(1):4-23, January 2005.
20. N. Li and J. Mitchell. Datalog with Constraints: A Foundation for Trust-management Languages. In Proceedings of the 5th International Symposium on Practical Aspects of Declarative Languages, New Orleans, Louisiana, January 2003.
21. N. Li and J. Mitchell. RT: A Role-based Trust Management Framework. In Proceedings of the 3rd DARPA Information Survivability Conference and Exposition, Washington D.C., April 2003.
22. N. Li, J. Mitchell, and W. Winsborough. Design of a Role-Based Trust-Management Framework. In Proceedings of the 2002 IEEE Symposium on Security and Privacy, pages 114-130, Oakland, California, May 2002.
23. N. Li, W. Winsborough, and J. Mitchell. Beyond Proof-of-Compliance: Safety and Availability Analysis in Trust Management. In Proceedings of the 2003 IEEE Symposium on Security and Privacy, Oakland, California, May 2003.
24. J. S. Park and J. Hwang. Role-based Access Control for Collaborative Enterprise In Peer-to-Peer Computing Environments. In Proceedings of the 8th ACM Symposium on Access Control Models and Technologies (SACMAT'03), pages 93-99, Como, Italy, June 2003.
25. I. Ray and S. Chakraborty. A Vector Model of Trust for Developing Trustworthy Systems. In Proceedings of the 9th European Symposium of Research in Computer Security (ESORICS 2004), volume 3193 of Lecture Notes in Computer Science, pages 260-275, Sophia Antipolis, France, September 2004.
26. R. Sandhu, E. Coyne, H. Feinstein, and C. Youman. Role-Based Access Control Models. IEEE Computer, 29(2):38-47, February 1996.
27. R. Sandhu and X. Zhang. Peer-to-Peer Access Control Architecture Using Trusted Computing Technology. In Proceedings of the 10th ACM Symposium on Access Control Models and Technologies (SACMAT'05), pages 147-158, Stockholm, Sweeden, June 2005.
28. R. K. Thomas. Team-based Access Control (TMAC): A Primitive for Applying Role-based Access Controls in Collaborative Environments. In Proceedings of the Second ACM Workshop on Role-based Access Control (RBAC'97), pages 13-19, Fairfax, Virginia, USA, November 1997.
29. T. van den Akker, Q. O. Snell, and M. J. Clement. The YGuard Access Control Model: Set-based Access Control. In Proceedings of the 6th ACM Symposium on Access Control Models and Technologies (SACMAT'01), pages 75-84, Chantily, Virginia, USA, May 2001.
30. H. F. Wedde and M. Lischka. Role-Based Access Control in Ambient and Remote Space. In Proceedings of the 9th ACM Symposium on Access Control Models and Technologies (SACMAT'04), pages 21-30, Yorktown Heights, New York, USA, June 2004.
31. M. Winslett, N. Ching, V. Jones, and I. Slepchin. Assuring security and privacy for digital library transactions on the Web: client and server security policies. In Proceedings of the IEEE international forum on Research and Technology Advances in Digital Libraries, pages 140-151, Washington, DC, USA, May 1997.