Visual modeling and formal specification of constraints of RBAC using semantic web technology

Knowledge-Based Systems

Volumn 20, Issue 4, 2007, Pages 350-356

  Kwon, JuHum ^a   Moon, Chang Joo ^b  

^a Korea Air Force Central Computer Center   (South Korea)

^b Konkuk University   (South Korea)

Author keywords

Description logics; OWL; RBAC; Semantic web technology; Visual modeling

Indexed keywords

CRYPTOGRAPHY; FORMAL LANGUAGES; INFORMATION SYSTEMS; ONTOLOGY; SEMANTIC WEB; VISUALIZATION;

DESCRIPTION LOGICS; ROLE BASED ACCESS CONTROL (RBAC); SEMANTIC WEB TECHNOLOGY; VISUAL MODELING; WEB ONTOLOGY LANGUAGE (OWL);

ACCESS CONTROL;

EID: 34147224015     PISSN: 09507051     EISSN: None     Source Type: Journal    
DOI: 10.1016/j.knosys.2006.08.002     Document Type: Article

References (29)

1. M. Weiser, The computer for the 21st century, Scientific American 265 (9) (1991) 66-75.
2. Ferraiolo D.F., et al. Role-Based Access Control (2003), Artech House
3. D.R. Kuhn, Mutual exclusion of roles as a means of implementing separation of duty in role-based access control systems, in: Second ACM Workshop on Role-Based Access Control, 1997.
4. V.D. Gligor, S.I. Gavrila, D. Ferraiolo, On the formal definition of separation-of-duty policies and their composition. in: IEEE Symposium on Security and Privacy, May, 1998.
5. Mattern T. The vision and technical foundations of ubiquitous computing. UPGRADE 11 5 (2001)
6. Sandhu R.S., Coynek E.J., Feinsteink H.L., and Youmank C.E. Role-based access control models. IEEE Computer 29 2 (1996) 38-47
7. R. Sandhu, D. Ferraiolo, R. Kuhn, The NIST model for role-base access control-toward a unified standard, in: Proceedings, 5th ACM Workshop on Role Based Access Control, July, 2000, pp. 26-27.
8. J. Zao, H. Wee, J. Chu, D. Jackson, RBAC Schema Verification Using Lightweight Formal Model and Constraint Analysis, MIT, Cambridge, 2002.
9. L. Kagal, T. Finin, A. Joshi, A policy language for a pervasive computing environment, in: Proceedings of IEEE 4th International Workshop on Policies for Distributed Systems and Networks, Italy, June, 2003.
10. D.K.W. Chiu, P.C.K. Hung, Privacy and access control issues in financial enterprise content management. HICSS, 2005.
11. Bradshaw J.M., et al. Representation and reasoning for DAML-based policy and domain services in KAoS and Nomads. Proceedings of the Autonomous Agents and Multi-Agent Systems Conference (AAMAS 2003) (2003), ACM Press, Melbourne, Australia, New York
12. R. Montanari et al., Context-based security management for multi-agent systems, in: Second IEEE Symposium on Multi-Agent Security and Survivability, 2005.
13. N. Sriharee et al., On using WS-policy, ontology, and rule reasoning to discover web services, INTELLCOMM 2004 (2004) 246-255.
14. G.-J. Ahn, R. Sandhu, Role-based authorization constraints specification, ACM Transactions on Information and System Security 3 (4) (2000) 207-226.
15. N. Li, Z. Bizri, M.V. Tripunitara, On mutually-exclusive roles and separation of duty, in: Proceedings of the 11th ACM conference on Computer and Communications Security, Washington DC, USA, October 2004, pp. 25-29.
16. C.-J. Moon, D.-H. Park, S.-J. Park, D.-K. Baik, Symmetric RBAC model that takes the separation of duty and role hierarchies into consideration, Computers and Security 23 (2) (2004).
17. Berners-Lee T. Weaving the Web (1999), Harper, San Francisco
18. T. Berners-Lee, J. Hendler, O. Lassila, The semantic web, Scientific American 284 (5) (2001) 34-43.
19. S. Bechhofer, F. vanHarmelen, J. Hendler, et al. OWL web ontology language reference, W3C Recommendation (2004), .
20. T. Strang, et al., A context modeling survey, in: UbiComp 1st International Workshop on Advanced Context Modelling Reasoning and Management, Nottingham, 2004, pp. 34-41.
21. Brockmans S., Volz R., Eberhart A., and Loeffler P. Visual modeling of OWL DL ontologies using UML. Proceedings of the Third International Semantic Web Conference (2004), Springer, Hiroshima, Japan 198-213
22. Ferraiolo D.F., Sandhu R., Gavrila S., Kuhn D.R., and Chandramouli R. Proposed NIST standard for role-based access control. ACM Transactions on Information and System Security 4 3 (2001) 224-274
23. .
24. Nyanchama M., and Osborn S. The role graph model and conflict of interest. ACM Transactions on Information and System Security 2 1 (1999) 3-33
25. Koch M., and Mancini L.V. A graph-based formalism for RBAC. ACM Transactions on Information and System Security 5 3 (2002)
26. M.E. Shin, G.-J. Ahn, UML-based representation of role-based access control, Enabling Technologies: Infrastructure for Collaborative Enterprises, 2000 (WET ICE 2000).
27. Antoniou G., and vanHarmelen F. Web ontology language (OWL). Handbook on Ontologies, International HandBooks on Information Systems (2004), Springer Verlag, New York
28. Horrocks I., Patel-Schneider P.F., and van Harmelen F. From SHIQ and RDF to OWL: the making of a web ontology language. Journal of Web Semantics 1 1 (2003)
29. In: Baader F., Calvanese D., McGuinness D., Nardi D., and Patel-Schneider P. (Eds). The Description Logic HandBook (2002), Cambridge University Press, Cambridge