Towards movement-aware access control

Proceedings of the SIGSPATIAL ACM GIS 2008 International Workshop on Security and Privacy in GIS and LBS, SPRINGL'08

Volumn , Issue , 2008, Pages 39-45

  Damiani, Maria Luisa ^a   Silvestri, Claudio ^a  

^a UNIVERSITY OF MILAN   (Italy)

Author keywords

Geospatial data; GIS; Privacy; Security

Indexed keywords

ACCESS CONTROL MODELS; GEOSPATIAL DATA; GIS; MODELING FRAMEWORKS; MULTI DOMAINS; PERVASIVE APPLICATIONS; POSITION INFORMATION; PRIVACY; PROTECTED OBJECT; RBAC MODEL; SECURITY; SIMILAR SOLUTION;

DATA PRIVACY; GEOGRAPHIC INFORMATION SYSTEMS; SECURITY SYSTEMS; UBIQUITOUS COMPUTING;

ACCESS CONTROL;

EID: 70349098398     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/1503402.1503410     Document Type: Conference Paper

References (30)

1. S. Aich, S. Sural, and A. K. Majumdar. STARBAC: Spatio temporal Role Based Access Control. In OTM Conferences, 2007.
2. J. Al-Muhtadi, R. Hill, R. Campbell, and M. D. Mickunas. Context and Location-Aware Encryption for Pervasive Computing Environments. In Proc. 3rd IEEE International Workshop on Pervasive Computing and Communication Security, 2006.
3. M. J. Atallah, M. Blanton, and K. B. Frikken. Efficient techniques for realizing geo-spatial access control. In Proc. 2nd ACM Symposium on Information, computer and communications security (ASIACCS '97), 2007.
4. T. Berfall. Mobility versus security-getting the balance right. http://www.bcs.org/server.php?show=ConWebDoc.3057, 2006. Last visit: Sept. 2007.
5. E. Bertino, S. Calo, H. Chen, N. Li, T. Li, J. Lobo, I. Molloy, and Q. Wang. Some Usability Considerations in Access Control Systems. In Proc. Symposium On Usable Privacy and Security (SOUPS), 2008.
6. R. Bhatti, M. Damiani, D. Bettis, and E. Bertino. Policy Mapper: A Simplified Approach for Administration of Location-based Access Control Policies. IEEE internet Computing, 12(2), 2008.
7. R. Bhatti, A. Ghafoor, E. Bertino, and J. Joshi. X-GTRBAC: an XML-based policy specification framework and architecture for enterprise-wide access control. ACM Transactions on Information and System Security (TISSEC), 8(2): 187-227, May 2005.
8. R. Bhatti, J. B. D. Joshi, E. Bertino, and A. Ghafoor. X-GTRBAC Admin: A Decentralized AdministrationModel for Enterprise-Wide Access Control. ACM Transactions on Information and System Security, 4, 2005.
9. U. C. Bureau. http://www.census.gov/geo/www/tiger/.
10. Y. Cho and L. Bao. Secure access control for location-based applications in wlan systems. In Mobile Adhoc and Sensor Systems (MASS), 2006 IEEE International Conference on, pages 852-857, 2006.
11. M. Damiani and E. Bertino. Access Control Systems for Geo-spatial Data and Applications. In E. Ferrari, A. Belussi, B. Catania, and E. Clementini, editors, Spatial Data on the Web: Modeling and Management. Springer, 2007.
12. M. Damiani, E. Bertino, and C. Silvestri. An approach to supporting continuity of usage in location-based access control. In Proc. 12th IEEE International Workshop on Future Trends of Distributed Computing Systems, October 2008, Oct. 2008.
13. M. L. Damiani, E. Bertino, B. Catania, and P. Perlasca. GEO-RBAC: a spatially aware RBAC. ACM Transactions on Information and System Security, 1(1): Art. 1, 2007.
14. M. L. Damiani, E. Bertino, and C. Silvestri. Spatial Domains for the Administration of Location-based Access Control Policies. Journal of Network and Systems Management, DOI 10.1007/sl0922-008-9106-0, September 2008 (online).
15. N. Damianou, N. Dulay, E. Lupu, and M. Sloman. The Ponder Policy Specification Language. In Proc. Policy 2001: Workshop on Policies for Distributed Systems and Networks, 2001.
16. D.E. Denning and F. MacDoran. Location-Based Authentication: Grounding Cyberspace for Better Security. Computer Fraud and Security, Elsevier Science Ltd., February 1996.
17. T. W. Finin, A. Joshi, L. Kagal, J. Niu, R. S. Sandhu, W. H. Winsborough, and B. M. Thuraisingham. ROWLBAC: representing role based access control in OWL. In Proc. SACMAT, 2008.
18. M. Ge and S. L. Osborn. A Design for Parameterized Roles. In F. C. and S. P., editors, Research Directions in Data and Applications Security XVIII, IFIP TC11/WG 11.3 Eighteenth Annual Conference on Data and Applications Security, 2004.
19. L. Giuri and P. Iglio. Role Templates for Content-Based Access Control. In ACM Workshop on Role Based Access Control, 1997.
20. J. Hightower and G. Boriello. Location Systems for Ubiquitous Computing. Computer, 34(8), 2001.
21. M. Hilty, A. Pretschner, D. A. Basin, C. Schaefer, and T. Walter. A policy language for distributed usage control. In ESORICS, pages 531-546, 2007.
22. J. Hwang, T. He, and Y. Kim. Secure localization with phantom node detection. Ad Hoc Netw., 6(7): 1031-1050, 2008.
23. J. Joshi, E. Bertino, U. Latif, and A. Ghafoor. A Generalized Temporal Role-Based Access Control Model. IEEE Transactions on Knowledge and Data Engineering, 17(1):4-23, January 2005.
24. D. Kulkarni and A. Tripathi. Context-aware role-based access control in pervasive computing systems. In SACMAT '08: Proceedings of the 13th ACM symposium on Access control models and technologies, pages 113-122, New York, NY, USA, 2008. ACM.
25. M. Kumar and R. Newman. STRBAC - An approach towards spatio-temporal role-based access control. In Communication, Network, and Information Security, pages 150-155, 2006.
26. A. Muhlbauer, R. Safavi-Naini, F. Salim, N. Sheppard, and M. Surminen. Location constraints in digital rights management. Computer Communication, 31(6):1173-1180, 2008.
27. OASIS, extensible Access Control Markup Language (XACML). www.oasis-open.org/committees/xacml/.
28. N. Sastry, U. Shankar, and D. Wagner. Secure Verification of Location Claims. In Proceedings of the ACM Workshop on Wireless Security (WiSe 2003), 2003.
29. Z. Xu and H.-A. Jacobsen. Adaptive location constraint processing. In SIGMOD Conference, 2007.
30. X. Zhang, F. Parisi-Presicce, R. Sandhu, and J. Park. Formal model and policy specification of usage control. ACM Transactions on Information and System Security, 8(4):351-387, 2005.