A uniform model for authorization and access control in enterprise information platform

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 2480, Issue , 2002, Pages 180-192

  Li, Dongdong ^a   Hu, Songlin ^a   Bai, Shuo ^a  

^a INSTITUTE OF COMPUTING TECHNOLOGY   (China)

Author keywords

[No Author keywords available]

Indexed keywords

DATA INTEGRATION; INFORMATION SYSTEMS; INFORMATION USE; MANAGEMENT INFORMATION SYSTEMS; NATURAL RESOURCES MANAGEMENT; RESOURCE ALLOCATION; WORK SIMPLIFICATION;

ANALYSIS AND EVALUATION; AUTHORIZATION AND ACCESS CONTROL; AUTHORIZATION SYSTEMS; INFORMATION PLATFORM; MODEL-DRIVEN ENTERPRISE; RESOURCE MANAGEMENT SYSTEMS; WORKFLOW MANAGEMENT SYSTEMS; WORKFLOW MANAGEMENTS;

ACCESS CONTROL;

EID: 84931361791     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/3-540-45785-2_14     Document Type: Conference Paper

References (12)

1. Bertino E., Ferrari E. and Atluri V. An Approach for the Specification and Enforcement of Authorization Constraints in Workflow Management Systems, ACM Transactions on Information Systems Security, February 1999, Vol 1, No. 1
2. Castano, S., Casati F., and Fugini M. Managing Workflow Authorization Constraints through Active Database Technologh, Information Systems Frontiers, 3(3) September 2001.
3. Shengli Wu, Amit Sheth John Miller, Zongwei Luo. Authorization and Access Control of Application Data in Workflow Systems, Intelligent Information Systems, January 2002, pp. 71-94
4. S. Jajodia, P. Samarati, M. L. Sapino, and V. S. Subrahmanian, Flexible Support for Multiple Access Control Policies, in ACM Transactions on Database Systems, vol. 26, n. 2, June 2001, pp 214-260
5. P. Bonatti, S de Capitani di, P. Samarati, A Modular Approach to Composing Access Control Policies, In Proceedings of the 7th ACM conference on Computer and communications security, page 164-173, Athens Greece, Nov 2000. ACM Press
6. T. Y. C. Woo and S. S. Lam, Authorizations in distributed systems: A new approach. Journal of Computer Security, 2(2, 3): 107-136, 1993
7. P. Samarati, M. K. Reiter, S. Jajodia, An Authorization Model for a Public Key Management Service, in ACM Transactions on Information and System Security (TISSEC), vol. 4, n. 4, November 2001, pp. 453-482
8. Bertino E., Ferrari E., Administration Policies in a Multipolicy Authorization System. Proc. 11th IFIP Working Conference on Database Security, Lake Tahoe (CA), August 1997, pp. 15-26
9. R. Sandhu, E. Coyne, H. L, Feinstein, C. E. Youman, Role-based access control models. IEEE Computer, pages 38-47, February 1996
10. Blaze, Feigenbaum, Strauss, Compliance checking in the policymaker trust management system. In FC: International Conference on Financial Cryptography. LNCS, Springer-Verlag, 1998
11. N. H. Minsky, V. Ungureanu, Unified support for heterogeneous security policies in distributed systems. In proceeding of the 7th USENIX Security Symposium (SECURITY-98), pages 131-142, Berkeley, Jan. 26-29, 1998. Usenix Association
12. AHN, G. J, the RCL 2000 Language for Specifying Role_Based Authorization Constraints, PhD Thesis, George Mason University, January 2000