Role-based access-control using reference ontology in clouds

Proceedings - 2011 10th International Symposium on Autonomous Decentralized Systems, ISADS 2011

Volumn , Issue , 2011, Pages 121-128

  Tsai, Wei Tek ^a,b   Shao, Qihong ^b  

^a ARIZONA STATE UNIVERSITY   (United States)

^b TSINGHUA UNIVERSITY   (China)

Author keywords

Cloud computing; Ontology; Policy; Role based access control model; Security

Indexed keywords

GRANULARITY LEVELS; ONTOLOGY TRANSFORMATION; POLICY; RBAC MODEL; ROLE HIERARCHY; ROLE-BASED; ROLE-BASED ACCESS CONTROL; ROLE-BASED ACCESS CONTROL MODEL; SECURITY; SYSTEM DESIGN;

CLOUD COMPUTING; CLOUDS; COMPUTER SYSTEMS; ONTOLOGY; SECURITY SYSTEMS; SYSTEMS ANALYSIS;

ACCESS CONTROL;

EID: 79955709135     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/ISADS.2011.21     Document Type: Conference Paper

References (40)

1. "Multi-tenancy architecture." [Online]. Available: http://msdn.microsoft.com/en-us/library/aa479086.aspx
2. R. S. Sandhu, E. J. Coyne, H. L. Feinstein, and C. E. Youman, "Role-based access control models," IEEE Computer, pp. 38-47, 1996.
3. "Rbac, role based access control 2000 workshop," Berlin, Germany, 2000.
4. G.-J. Ahn and R. Sandhu, "Role-based authorization constraints specification," ACM Trans. Inf. Syst. Secur, pp. 207-226, 2000.
5. Ontology. [Online]. Available: http://en.wikipedia.org/wiki/Ontology- (information-science)
6. M. S. Fox, M. Barbuceanu, and M. Gruninger, "An organisation ontology for enterprise modeling: preliminary concepts for linking structure and behaviour," Comput. Ind., pp. 123-134, 1996. (Pubitemid 126371718)
7. H. S. Pinto and J. P. Martins, "Ontologies: How can they be built?" Knowl. Inf. Syst., pp. 441-464, 2004.
8. H. S. Pinto and a. P. Martins, Jo "A methodology for ontology integration," in K-CAP '01, 2001, pp. 131-138.
9. M. Warin, H. Oxhammar, and M. Volk, "Enriching an ontology with wordnet based on similarity measures," in MEANING-2005 Workshop, 2005.
10. J. Han, Data Mining: Concepts and Techniques. San Francisco, CA, USA: Morgan Kaufmann Publishers Inc., 2005.
11. M. G. Egan, M. Gugan, and N. Hern, "Recognizing textual parallelisms with edit distance and similarity degree," 2006.
12. J. Allali and M. france Sagot, "Novel tree edit operations for rna secondary structure comparison," in Proceedings of the 4th Workshop on Algorithms in BioInformatics (WABI), Lecture Notes in Computer Science, 2004, pp. 412-425. (Pubitemid 39750027)
13. S. Guha, H. V. Jagadish, N. Koudas, D. Srivastava, and T. Yu, "Approximate xml joins," in SIGMOD '02, 2002, pp. 287-298. (Pubitemid 34985555)
14. P. Bille, "A survey on tree edit distance and related problems," Theor. Comput. Sci., pp. 217-239, 2005. (Pubitemid 40644674)
15. K.-C. Tai, "The tree-to-tree correction problem," J. ACM, pp. 422-433, 1979.
16. K. Zhang and D. Shasha, "Simple fast algorithms for the editing distance between trees and related problems," SIAM J. Comput., pp. 1245-1262, 1989. (Pubitemid 20613578)
17. P. N. Klein, "Computing the edit-distance between unrooted ordered trees," in ESA'98, 1998, pp. 91-102. (Pubitemid 128117046)
18. A. Schaad, J. Moffett, and J. Jacob, "The role-based access control system of a european bank: a case study and discussion," in SACMAT '01, 2001, pp. 3-9.
19. M. Sloman, "Policy driven management for distributed systems," Journal of Network and Systems Management, pp. 333-360, 1994.
20. S. Godik and T. Moses., "Oasis extensible access control markup language (xacml) version 1.1. oasis committee specification," July 2003.
21. B. Iyer, S. Mehrotra, E. Mykletun, G. Tsudik, and Y. Wu, "A framework for efficient storage security in rdbms," in In EDBT, 2004.
22. R. Sandhu, D. Ferraiolo, and R. Kuhn, "The nist model for role-based access control: towards a unified standard," in RBAC '00, 2000, pp. 47-63.
23. R. Bhatti, E. Bertino, A. Ghafoor, and J. B. D. Joshi, "Xml-based specification for web services document security," Computer, pp. 41-49, 2004.
24. J. Crampton and G. Loizou, "Administrative scope: A foundation for role-based administrative models," ACM Transactions on Information and System Security, pp. 201-231, 2003.
25. A. Kern, M. Kuhlmann, R. Kuropka, and A. Ruthert, "A meta model for authorisations in application security systems and their integration into rbac administration," in SACMAT '04, 2004, pp. 87-96.
26. M. Koch, L. V. Mancini, and F. Parisi-Presicce, "Administrative scope in the graph-based framework," in SACMAT '04, 2004, pp. 97-104.
27. E. Bertino, P. A. Bonatti, and E. Ferrari, "Trbac: A temporal role-based access control model," ACM Trans. Inf. Syst. Secur., vol. 4, no. 3, pp. 191-233, 2001.
28. J. B. D. Joshi, E. Bertino, U. Latif, and A. Ghafoor, "A generalized temporal role-based access control model," IEEE Trans. on Knowl. and Data Eng., vol. 17, no. 1, pp. 4-23, 2005. (Pubitemid 40536468)
29. N. Li and M. V. Tripunitara, "Security analysis in role-based access control," ACM Trans. Inf. Syst. Secur., pp. 391-420, 2006. (Pubitemid 44927156)
30. C. Ramaswamy, R. Sandhu, R. Ramaswamy, and R. S, "Role-based access control features in commercial database management systems," in NIST-NCSC, 1998, pp. 503-511.
31. D. W. Chadwick, A. Otenko, and E. Ball, "Role-based access control with x.509 attribute certificates," IEEE Internet Computing, pp. 62-69, 2003.
32. E. Bertino and L. M. Haas, "Views and security in distributed database management systems," in EDBT '88, pp. 155-169.
33. "Oracle, the virtual private database in oracle9ir2." [Online]. Available: http://otn.oracle.com/deploy/security/oracle9iR2/pdf/VPD9ir2twp.pdf, 2000
34. "Ws-policy. web services policy framework (ws-policy)." [Online]. Available: http://www-106.ibm.com/developerworks/library/ specification/wspolfram/.
35. C. Zhao, N. Heilili, S. Liu, and Z. Lin, "Representation and reasoning on rbac: A description logic approach," in In ICTAC, 2005, pp. 381-393.
36. G. Hughes and T. Bultan, "Automated verification of access control policies using a sat solver," Int. J. Softw. Tools Technol. Transf., pp. 503-520, 2008.
37. T. Finin, A. Joshi, L. Kagal, J. Niu, R. Sandhu, W. Winsborough, and B. Thuraisingham, "Rowlbac: representing role based access control in owl," in SACMAT '08, 2008, pp. 73-82.
38. A. Macfie, P. Kataria, N. Koay, H. Dagdeviren, R. Juric, and K. Madani, "Ontology based access control derived from dynamic rbac and its context constraints." in IDPT 2008, 2008.
39. C. Kaufman, R. Perlman, and M. Speciner, Network Security: Private Communication in a Public World, second ed., 2002.
40. J. Ouellette, Development with the Force.com Platform: Building Business Applications in the Cloud, 2009.