RCWLBAC - representing role based access control in OWL

Proceedings of ACM Symposium on Access Control Models and Technologies, SACMAT

Volumn , Issue , 2008, Pages 73-82

  Finin, T ^a   Joshi, A ^a   Kagal, L ^b   Niu, J ^c   Sandhu, R ^c   Winsborough, W ^c   Thuraisingham, B ^d  

^a UNIVERSITY OF MARYLAND   (United States)

^b MASSACHUSETTS INSTITUTE OF TECHNOLOGY   (United States)

^c UNIVERSITY OF TEXAS AT SAN ANTONIO   (United States)

^d UNIVERSITY OF TEXAS AT DALLAS   (United States)

Author keywords

Access control model; Ontology; OWL; RBAC; Semantic Web

Indexed keywords

ACCESS CONTROL MODEL; ACCESS CONTROL MODELS; APPLICATION DOMAINS; AUTHORIZATION POLICIES; CONTROL CONCEPTS; CONTROL PROBLEMS; MANAGEMENT FRAMEWORKS; ONE HANDS; OWL; POLICY LANGUAGES; RBAC; RBAC MODELS; REAL WORLDS; ROLE-BASED ACCESS CONTROLS; SECURITY ANALYSES; WEB ONTOLOGY LANGUAGES;

CONTROL SYSTEMS; INFORMATION THEORY; LINGUISTICS; MACHINERY; MULTI AGENT SYSTEMS; ONTOLOGY; PAPER; QUERY LANGUAGES; SECURITY SYSTEMS; SEMANTIC WEB; SEMANTICS;

ACCESS CONTROL;

EID: 57349182523     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/1377836.1377849     Document Type: Conference Paper

References (35)

1. M. Al-Kahtani and R. Sandhu. A model for attribute-based user-role assignment. Computer Security Applications Conference, 2002. Proceedings. 18th Annual, pages 353-362, 2002.
2. F. Baader. Restricted role-value-maps in a description logic with existential restrictions and terminological cycles. Proc. DL 2003.
3. F. Baader. The Description Logic Handbook: Theory, Implementation, and Applications. Cambridge University Press, 2003.
4. E. Barka and R. Sandhu. Framework for role-based delegation models. In Annual Computer Security Applications Conference, 2000.
5. S. Bechhofer, F. van Harmelen Jim Hendler, I. Horrocks, D. L. McGuinness, P. F. Patel-Schneider, and L. A. Stein. Owl web ontology language reference, February 2004. http://www.w3.org/TR/owl-ref.
6. T. Berners-Lee, D. Connolly, L. Kagal, J. Hendler, and Y. Schraf. N3Logic: A Logical Framework for the World Wide Web. Journal of Theory and Practice of Logic Programming (TPLP), Special Issue on Logic Programming and the Web, 2008.
7. N. Damianou, N. Dulay, E. Lupu, and M. Sloman. The ponder policy specification language. Lecture Notes in Computer Science, 1995, 2001.
8. W. Di, L. Jian, D. Yabo, and Z. Miaoliang. Using semantic web technologies to specify constraints of rbac. Parallel and Distributed Computing, Applications and Technologies, 2005. PDCAT 2005. Sixth International Conference on, pages 543-545, 05-08 Dec. 2005.
9. D. Ferraiolo, R. Sandhu, S. Gavrila, D. Kuhn, and R. Chandramouli. Proposed NIST standard for role-based access control. ACM Transactions on Information and System Security (TISSEC), 4(3):224-274, 2001.
10. D. F. Ferraiolo, R. Sandhu, S. Gavrila, D. R. Kuhn, and R. Chandramouli. Proposed nist standard for role-based access control. ACM Transactions on Information and System Security, 4(3):224-274, August 2001.
11. S. Godik and T. Moses. OASIS extensible access control markup language (XACML). OASIS Committee Secification cs-xacml-specification-1.0, November 2002.
12. P. Hayes and B. McBride. RDF Semantics. http://www.w3.org/TR/rdf-mt/, 2004.
13. N. Heilili, Y. Chen, C. Zhao, Z. Luo, and Z. Lin. An owl based approach for rbac with negative authorization. Lecture Notes in Computer Science, 4092:164, 2006.
14. I. Horrocks, P. Patel-Schneider, H. Boley, S. Tabet, B. Grosof, and M. Dean. SWRL: A semantic web rule language combining OWL and RuleML. W3C Member Submission, 21, 2004.
15. S. Jajodia, P. Samarati, and V. Subrahmanian. A Logical Language for Expressing Authorizations. Proceedings of the 1997 IEEE Symposium on Security and Privacy, page 31, 1997.
16. L. Kagal, T. Finin, and A. Joshi. A policy language for pervasive systems. In Fourth IEEE International Workshop on Policies for Distributed Systems and Networks, 2003.
17. O. Lassila, R. Swick, et al. Resource Description Framework (RDF) Model and Syntax Specification. 1999.
18. N. Li, B. N. Grosof, and J. Feigenbaum. A practically implementable and tractable delegation logic. In Proc. of IEEE Symp. on Security and Privacy, Oakland, CA, USA, May 2000, 2000.
19. N. Li and J. Mitchell. RT: A Role-based Trust-management Framework. DARPA Information Survivability Conference and Exposition (DISCEX), pages 123-139.
20. N. Li, J. Mitchell, and W. Winsborough. Design of a role-based trust-management framework. Security and Privacy, 2002. Proceedings. 2002 IEEE Symposium, on, pages 114-130, 2002.
21. N. Li, J. Mitchell, and W. Winsborough. Beyond proof-of-compliance: security analysis in trust management. Journal of the ACM (JACM), 52(3):474-514, 2005.
22. D. L. McGuinness and F. van Harmelen. Owl web ontology language overview, February 2004. http://www.w3.org/TR/owl-features/.
23. T. Moses et al. extensible Access Control Markup Language (XACML) Version 2.0. OASIS Standard, 200502, 2005.
24. J. Park and R. Sandhu. The UCONabc usage control model. ACM Transactions on Information and System Security, 5(6), 2007.
25. A. Pretschner, M. Hilty, and D. Basin. Distributed usage control. Communications of the ACM, 49(9):39-44, 2006.
26. M. Reith, J. Niu, and W. Winsborough. Model checking to security analysis in trust management. In ICDE Workshop on Security Technologies for Next Generation Collaborative Business Applications, 2007.
27. C. N. Ribeiro, A. Zuquete, P. Ferreira, and P. Guedes. SPL: An access control language for security policies with complex constraints. In Network and Distributed System, Security Symposium (NDSS'01), 2001.
28. R. Sandhu, E. J. Coyne, H. L. Feinstein, and C. E. Youman. Role-based access control models. IEEE Computer, 29(2):38-47, February 1996.
29. R. S. Sandhu. Role-based access control. In M. Zerkowitz, editor, Advances in Computers, volume 48. Academic Press, 1998.
30. M. Schmidt-Schauss. Subsumption in KL-one is undecidable. Fachber. Informatik, Univ, 1988.
31. A. P. Sistla and M. Zhou. Analysis of dynamic policies. Inf. Comput., 206(2-4):185-212, 2008.
32. A. C. Squicciarini, E. Bertino, E. Ferrari, and I. Ray. Achieving privacy in trust negotiations with an ontology-based approach. IEEE Transactions on Dependable Sec. Comput., 3(l):13-30, 2006.
33. B. Thuraisingham. Assured information sharing. Technical Report UTDCS-43-06, Computer Science Department, University of Texas Dallas, 2006. to appear as Book Chapter in Security Informatics by Springer, editor: H. Chen.
34. G. Tonti, J. M. Bradshaw, R. Jeffers, R. Montanar, N. Suril, and A. Uszokl. Semantic web languages for policy representation and reasoning: A comparison of kaos, rei, and ponder. In Proceedings of the 2nd International Semantic Web Conference (ISWC2003). Springer-Verlag, 2003.
35. L. Wang, D. Wijesekera, and S. Jajodia. A logic-based framework for attribute based access control. Proceedings of the 2004 ACM workshop on Formal methods in security engineering, pages 45-55, 2004.