An OWL-based approach for RBAC with negative authorization

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 4092 LNAI, Issue , 2006, Pages 164-176

  Heilili, Nuermaimaiti ^a   Chen, Yang ^a   Zhao, Chen ^a   Luo, Zhenxing ^a   Lin, Zuoquan ^a  

^a PEKING UNIVERSITY   (China)

Author keywords

[No Author keywords available]

Indexed keywords

COMPUTER SCIENCE; COMPUTER SIMULATION; MATHEMATICAL MODELS; SEMANTICS; WORLD WIDE WEB;

AUTHORIZATION; ROLE-BASED ACCESS CONTROL (RBAC); SEMANTIC WEB CONTEXT;

SECURITY OF DATA;

EID: 33749452446     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/11811220_15     Document Type: Conference Paper

References (24)

1. Berners-Lee, T., Hendler, J., Lassila., O.: The Semantic Web. Scientific American 284 (2001) 34-43
2. American National Standards Institute, I.: American national standard for information technology - role based access control (2004) ANSI INCITS 359-2004. http://csrc.nist.gov/rbac/.
3. Kagal, L., Finin, T., Joshi, A.: A policy based approach to security for the semantic web. In: Proceeding of International Semantic Web Conference (ISWC 2003). (2003)
4. Kagal, L., Finin, T., Joshi, A.: A policy language for pervasive computing environment. In: Proceedings of IEEE Fourth International Workshop on Policy (Policy 2003), Lake Como, Italy (2003) 63-76
5. Uszok, A., Bradshaw, J., Jeffers, R., Suri, N., Hayes, P., Breedy, M., Bunch, L., Johnson, M., Kulkarni, S., Lott, J.: KAoS policy and domain services: Toward a description-logic approach to policy representation, deconfliction, and enforcement. In: Proceedings of IEEE Fourth International Workshop on Policy (Policy 2003), Lake Como, Italy (2003) 93-98
6. Bradshaw, J., Uszok, A., Jeffers, R., Suri, N., Hayes, P., Burstein, M., Acquisti, A., Benyo, B., Breedy, M., Carvalho, M., Diller, D., Johnson, M., Kulkarni, S., Lott, J., Sierhuis, M., Hoof, R.V.: Representation and reasoning for daml-based policy and domain services in kaos and nomads. In: Proceedings of the Autonomous Agents and Multi-Agent Systems Conference (AAMAS 2003), Melbourne, Australia (2003) 835-842
7. Damianou, N., Dulay, N., Lupu, E., Sloman, M.: The ponder policy specification language. In: Proceedings of Workshop on Policies for Distributed Systems and Networks (POLICY 2001), Bristol, UK (2001)
8. Woo, T.Y., Lam, S.S.: Authorization in distributed systems: A new approach. Journal of Computer Security 2 (1993) 107-136
9. Massacci, F.: Reasoning about security: A logic and a decision method for role-based access control. In: Proceeding of the International Joint Conference on Qualitative and Quantitative Practical Reasoning (ECSQARU/FAPR-97). (1997) 421-435
10. Jajodia, S., Samarati, P., Sapino, M., Subrahmanian, V.S.: Flexible support for multiple access control policies. ACM Transactions on Database Systems 26 (2001) 214-260
11. Bacon, J., Moody, K., Yao, W.: A model of oasis role-based access control and its support for active security. ACM Transactions on Information and System Security (TISSEC) 5 (2002) 492-540
12. Bertino, E., Catania, B., Ferrari, E., Perlasca, P.: A logical framework for reasoning about access control models. ACM Transactions on Information and System Security (TISSEC) 6 (2003) 71-127
13. Khayat, E.J., Abdallah, A.E.: A formal model for flat role-based access control. In: Proceeding of ACS/IEEE International Conference on Computer Systems and Applications (AICCSA'03), Tunis, Tunisia (2003)
14. Zhao, C., Nuermaimaiti.Heilili, Liu, S., Lin, Z.: Representation and reasoning on RBAC: A description logic approach. In: ICTAC05 - International Colloquium on Theoretical Aspects of Computing, Hanoi, Vietnam (2005)
15. Sean Bechhofer, Frank van Harmelen, J.H.I.H.D.L.M.L.A.S.: OWL web ontology language reference (2002) http://www.w3.org/TR/owl-ref/.
16. Baader, F., McGuinness, D.L., Nardi, D., Patel-Schneider, P.F.: The Description Logic Handbook: Theory, Implementation and Applications. Cambridge University Press (2002)
17. Bertino, E., Samarati, P., Jajodia, S.: An extended authorization model for relational databases. IEEE Transactions on Knowledge and Data Engineering 9 (1997) 85-101
18. Bertino, E., Pierangela, Samarati, Jajodia, S.: Authorizations in relational database management systems. In: Proceedings of the 1st ACM conference on Computer and communications security, Fairfax, Virginia, United States, ACM Press New York, NY, USA (1993) 130-139
19. Al-Kahtani, M.A., Sandhu, R.: Rule-based RBAC with negative authorization. In: Proceedings of the 20th Annual Computer Security Applications Conference (ACSAC'04), Tucson, Arizona, USA (2004)
20. Haarslev, V., Moller, R.: Description of the RACER system and its applications. In: International Workshop on Description Logics (DL-2001), Stanford, USA (2001)
21. Haarslev, V., Moller, R.: RACER system description. In: International Joint Conference on Automated Reasoning (IJCAR'2001), Siena, Italy (2001) 18-23
22. Horrocks, I., Patel-Schneider, P.F., Harmelen, F.v.: From SHIQ and RDF to OWL: The making of a web ontology language. Jouranl of Web Semantics 1 (2003) 7-26
23. Bechhofer, S.: The DIG description logic interface: DIG/1.1 (2003) Available from: http://dl-web.man.ac.uk/dig/2003/02/interface.pdf.
24. Horrocks, I., Patel-Schneider, P.F., Boley, H., Tabet, S., Grosof, B., Dean, M.: SWRL: A semantic web rule language combining OWL and RuleML (version 0.5) (2003) http://www.daml.org/2003/11/swrl/.