Towards a times-based usage control model

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 4602 LNCS, Issue , 2007, Pages 227-242

  Zhao, Baoxian ^a   Sandhu, Ravi ^b   Zhang, Xinwen ^c   Qin, Xiaolin ^d  

^a GEORGE MASON UNIVERSITY   (United States)

^b UNIVERSITY OF TEXAS AT SAN ANTONIO   (United States)

^c SAMSUNG INFORMATION SYSTEMS AMERICA   (United States)

^d NANJING UNIVERSITY OF AERONAUTICS AND ASTRONAUTICS   (China)

Author keywords

Access control; Authorization; Times based usage control; TUCON; Usage control

Indexed keywords

INFORMATION SYSTEMS; TEMPORAL LOGIC; ARTIFICIAL INTELLIGENCE; COMPUTERS;

DIGITAL OBJECTS; TIMES-BASED USAGE CONTROL; USAGE CONTROL; ACCESS CONTROL MODELS; AUTHORIZATION; FORMAL DEFINITION; TEMPORAL ACCESS CONTROLS; TIME INTERVAL; TUCON;

ACCESS CONTROL;

EID: 37849050601     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/978-3-540-73538-0_17     Document Type: Conference Paper

References (28)

1. Gal, A., Atluri, V.: An Authorization Model for temporal Data. ACM Transactions on Information and System Security 5(1) (Feburary 2002)
2. Lampson, B.W.: Protection. 5th Princeton Symposium on Information Science and Systems, 1971. Reprinted in ACM Operating Systems Review, 8(1), 18-24 (1974)
3. Landwehr, C.: Protection (Security) Models and Policy. In: The Computer Science and Engineering Handbook, pp. 1914-1928. CRC Press, USA (1997)
4. Bell, D.E., Lapadula, L.J.: Secure computer systems: Unified exposition and Multics interpretation. Technical Report ESD-TR-75-306, The Mitre Corporation, Bedford, MA (March 1975)
5. Denning, D.E.: A lattice Model of secure information flow. Communications of ACM. 19(5), 236-243 (1976)
6. Downs, D.D., Rub, J.R., Kung, K.C., Jordan, C.S.: Issues in discretionary access control. In: In the proceeding of IEEE Symposium on Research in Security and Privacy, pp. 208-218. IEEE Press, NJ, New York (April 1985)
7. Bertino, E., Bettini, C., Samarati, P.: A Temporal Authorization Model. CCS '94, 1/94 Fairfax Va, USA (1994)
8. Bertino, E., Bettini, C., Samarati, P.: A Temporal Access Control Mechanism for Database Systems. IEEE Transactions on Knowledge and DataEngineering 8(1) (Feburary 1996)
9. Bertino, E., Bettini, C., Ferrari, E., Samarati, P.: An Access Control Model Supporting Periodicity Constraints and Temporal Reasoning. ACM Transactionon Database Systems 23(3) (September 1998)
10. Bertino, E., Bonatti, P.A., Ferrari, E.: TRBAC: A Temporal Role-based Access Control Model. ACM Transactionon on Information and System Security 4(3), 191-233 (2001)
11. Kargl, F., Maier, J., Weber, M.: Protecting Web Servers from Distributed Denial of Service Attacks. In: Proceedings of WWW '10, pp. 514-525 (2001)
12. Graham, G.S., Denning, P.J.: Protection - Principles and Practice. In: Proceedings of the AFIPS Srping Joint Computer Conference, vol. 40, pp. 417-429. AFIPS Press (May 16-18, 1972)
13. James, B.D., Joshi, E., Bertino, U., Latif, A., Ghafoo, A.: A Generalized Temporal Role-Based Access Control Model. IACM Transactionon on Knoledge and Data Engineering 17(1), 4-23 (2005)
14. Park, J., Zhang, X., Sandhu, R.: The Usage Control Model. In: ACM Transactions on Information and Systems Security, ACM Press, New York (Feburary 2004)
15. Park, J., Zhang, X., Sandhu, R.: Attribute Mutability in Usage Control. IFIP WG 11.3 (November 2004)
16. Allen, J.F.: Maintaining Knowledge about Temporal Intervals. Communications of ACM 26 (November 1983)
17. Lo, J.: Denial of Service or "Nuke" Attacks (March 12, 2005), http://www.irchelp.org/irchelp/nuke/
18. Doerr, M., Yiortsou, A.: Implementing a Temporal Datatype. Technical Report ICS-FORTH/TR-236 (November 1998)
19. Kudo, M., Hada, S.: XML Document Security based on Provisional Authorization. In: CCS'00, Athens, Greece, ACM Press, New York (2000)
20. Weaver, N.: Warhol Worms: The Potential for Very Fast Internet Plagues, http://www.cs.berkeley.edu/nweaver/warhol.html
21. Griffiths, G.S., Wade, B.W.: An authorization mechanism for a relational database system. ACM Transactions On Database Systems 1(3), 242-255 (1976)
22. Sandhu, R.: Access Control: The Neglected Frontier (Keynote Lecture). In: Australasian Conference on Information Security and Privacy (1996)
23. Sandhu, R.: Role Hierarchies and Constraints for Lattice-Based Access Controls. In: European Symposium on Research in Security and Privacy (1996)
24. Sandhu, R., Park, J.: Usage Control: A Vision for Next Generation Access Control. In: Models and Architectures for Computer Networks Security. The Second International Workshopon Mathematical Methods (2003)
25. Siewe, F., Cau, A., Zedan, H.: A Compositional Framework for Access Control Policies Enforcement. In: Proceeding of the ACM Workshop on Formal Methods in Security Engineering, ACM Press, New York (2003)
26. Jajodia, S., Samarati, P., Subrahmanian, V.S.: A Logical Language for Expressing Authorizations. In: IEEE Symposium On Research in Security and Privacy, Oakland, California (1997)
27. Zhang, X., Park, J., Parisi-Presicce, F., Sandhu, R.: A Logical Specification for Usage Control. In: 9th ACM Symposium on Access Control Models and Technologies (SACMAT), ACM Press, New York (June 2-4, 2004)
28. Zhang, X., Parisi-Presicce, F., Park, J., Sandhu, R.: Formal Model and Policy Specification of Usage Control. ACM Transactions on Information and System Security (TISSEC) 8(4), 351-387 (2005)