ERBAC: Event-driven RBAC

Proceedings of ACM Symposium on Access Control Models and Technologies, SACMAT

Volumn , Issue , 2013, Pages 125-136

  Bonatti, Piero ^a   Galdi, Clemente ^a   Torres, Davide ^b  

^a UNIVERSITY OF NAPLES FEDERICO II   (Italy)

^b Siemens Information and Communication Networks SpA   (Italy)

Author keywords

Event driven access control; RBAC

Indexed keywords

ACCESS CONTROL DECISIONS; CONTEXT-AWARE ACCESS CONTROL; ENVIRONMENTAL CONDITIONS; EVENT-DRIVEN; PROTOTYPE IMPLEMENTATIONS; RBAC;

CONTROL;

ACCESS CONTROL;

EID: 84883067494     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/2462410.2462415     Document Type: Conference Paper

References (29)

1. XACML enterprise. http://code.google.com/p/enterprise-java-xacml/.
2. XACML light. http://sourceforge.net/projects/xacmllight/.
3. S. Aich, S. Mondal, S. Sural, and A. Majumdar. Role based access control with spatiotemporal context for mobile applications. In Transactions on Computational Science IV, volume 5430 of LNCS, pages 177-199. Springer, 2009.
4. S. Aich, S. Sural, and A. Majumdar. STARBAC: Spatiotemporal role based access control. In Proceedings of the 2007 OTM confederated international conference: CoopIS, DOA, ODBASE, GADA, and IS-Volume Part II, pages 1567-1582. Springer-Verlag, 2007.
5. J. Bacon, K. Moody, and W. Yao. A model ol OASIS role-based access control and its support for active security. ACM Trans. Inf. Syst. Secur., 5(4):492-540, 2002.
6. E. Bertino, C. Bettini, E. Ferrari, and P. Samarati. An access control model supporting periodicity constraints and temporal reasoning. A CM Trans. Database Syst., 23(3):231-285, 1998.
7. E. Bertino, P. A. Bonatti, and E. Ferrari. TRBAC: A temporal role-based access control model. A CM Trans. Inf. Syst. Secur., 4:191-233, August 2001.
8. T. H. Cormen, C. E. Leiserson, R. L. Rivest, and C. Stein. Introduction to Algorithms (3. ed.). MIT Press, 2009.
9. M. J. Covington, P. Fogla, Z. Zhan, and M. Ahamad. A context-aware security architecture for emerging applications. In Proceedings of the 18th Annual Computer Security Applications Conference, ACSAC '02, pages 249-, Washington, DC, USA, 2002. IEEE Computer Society.
10. M. J. Covington, W. Long, S. Srinivasan, A. K. Dev, M. Ahamad, and G. D. Abowd. Securing context-aware applications using environment roles. In Proceedings of the sixth ACM symposium on Access control models and technologies, SACMAT '01, pages 10-20. ACM, 2001.
11. M. L. Damiani, E. Bertino, B. Catania, and P. Perlasca. GEO-RBAC: A spatially aware RBAC. ACM Trans. Inf. Syst. Secur., 10(1), 2007.
12. D. F. Ferraiolo, R. S. Sandhu, S. I. Gavrila, D. R. Kuhn, and R. Chandramouli. Proposed NIST standard for role-based access control. A CM Trans. Inf. Syst. Secur., 4(3):224-274, 2001.
13. C. K. Georgiadis, I. Mavridis, G. Pangalos, and R. K. Thomas. Flexible team-based access control using contexts. In SACMAT, pages 21-27, 2001.
14. L. Giuri and P. Iglio. Role templates for content-based access control. In Second ACM Workshop on Role-Based Access Control, pages 153-159, 1997.
15. J. Joshi, E. Bertino, U. Latif, and A. Ghafoor. A generalized temporal role-based access control model. IEEE Trans. Knowl. Data Eng., 17(1):4-23, 2005.
16. D. Kulkarni and A. Tripathi. Context-aware role-based access control in pervasive computing systems. In 13th A CM Symposium on Access Control Models and Technologies (SACMAT 2008), pages 113-122, 2008.
17. D. Kulkarni and A. R. Tripathi. A framework for programming robust context-aware applications. IEEE Trans. Software Eng., 36(2):184-197, 2010.
18. OASIS Consortium. Core and hierarchical role based access control (rbac) profile of xacml v2.0. http://docs,oasis-open,org/xacml/2.0/access-control- xacml-2.0-rbac-profilel-spec-os.pdf.
19. OASIS Consortium, extensible access control markup language (XACML), v. 2.0.
20. OpenGIS Consortium. Geospatial extensible Access Control Markup Language (GeoXACML) v 1.0. http://www.opengeospatial.org/standards/geoxacml.
21. I. Ray, M. Kumar, and L. Yu. Lrbac: A location-aware role-based access control model. In A. Bagchi and V. Atluri, editors, ICISS, volume 4332 of Lecture Notes in Computer Science, pages 147-161. Springer, 2006.
22. I. Ray and M. Toahchoodee. A spatio-temporal role-based access control model. In S. Barker and G.-J. Ahn, editors, Data and Applications Security XXI, volume 4602 of Lecture Notes in Computer Science, pages 211-226. Springer Berlin/Heidelberg, 2007.
23. I. Ray and M. Toahchoodee. A spatio-temporal access control model supporting delegation for pervasive computing applications. Trust, Privacy and Security in Digital Business, pages 48-58, 2008.
24. G. Sampemane, P. Naldurg, and R. H. Campbell. Access control for active spaces. In Proceedings of the 18th Annual Computer Security Applications Conference, ACSAC '02, pages 343-, Washington, DC, USA, 2002. IEEE Computer Society.
25. R. S. Sandhu, E. J. Coyne, H. L. Feinstein, and C. E. Youman. Role-based access control models. IEEE Computer, 29(2):38-47, 1996.
26. V. Solutions. JTS topology suite. http://www.vividsolutions.com/jts/ jtshome.htm.
27. M. Strembeck and G. Neumann. An integrated approach to engineer and enforce context constraints in rbac environments. A CM Trans. Inf. Syst. Secur., 7(3):392-427, Aug. 2004.
28. Sun Microsystems. Sun's xacml implementation, http://sunxacml. sourceforge,net.
29. F. Turkmen and B. Crispo. Performance evaluation of XACML PDP implementations. In Proceedings of the 2008 ACM workshop on Secure web services, SWS '08, pages 37-44, New York, NY, USA, 2008. ACM.