Context-Role Based Access Control for Context-Aware Application

Park, Seon-Ho; Han, Yunghsiang S.; Chung, Tai-Myoung

doi:10.1007/11847366_59

Cited by 46 publications

(26 citation statements)

References 4 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Regarding the RBAC successors, the following models among them are briefly described below: GRBAC (Covington et al, 2000;Moyer and Ahamad, 2001), TRBAC (Bertino et al, 2001), GTRBAC (Joshi et al, 2005), Geo-RBAC , CA-RBAC (Kulkarni and Tripathi, 2008) and CRBAC (Park et al, 2006). GRBAC (Joshi, et al, 2005;Moyer and Ahamad, 2001) is a generalization of the original RBAC by incorporating the concepts of object roles and environment roles in order to apply RBAC for thehome-of-the-future application.…”

Section: Discussionmentioning

confidence: 99%

“…On the layer, appropriate permission privileges can be performed by dynamic object bindings. On the other hands, C-RBAC, context-role based access control model, supports a new concept of context role (Park et al, 2006). A context role is used to capture security relevant context information about the environment for use in C-RBAC policies.…”

Section: Discussionmentioning

confidence: 99%

“…RBAC is currently a standard of ANSI/INCITS (American National Standard 359-2004;Ferraiolo et al, 2001;Sandhu et al, 2000). There have been many successors based on RBAC (Thomas, 1997;Joshi et al, 2005;Kulkarni and Tripathi, 2008;Bertino et al, 2005;Bertino et al, 2001;Covington et al, 2000;Park et al, 2006;Moyer and Ahamad, 2001;Motta and Furuie, 2001).…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Situation, Team and Role based Access Control

Kawagoe¹

2011

Journal of Computer Science

View full text Add to dashboard Cite

Problem statement: An emergency system of sharing and exchanging user's personal information is demanded in medical treatment and disaster situations. Approach: In such a system, personal information access control depending on user situations is greatly necessary. However, it is complicated to manage personal information access control directly, because the existing access control methods only support regular access control, not for an emergency case. Results: In this study, we propose a new access control model, called STRAC, which stands for Situation, Team and Role based Access Control. The STRAC enables access control of user personal information with consideration of context changes. Conclusion/Recommendations: In our proposed model, a concept of situations is introduced. Moreover, the proposed model is based on a concept of TMAC, which is an extension of a conventional RBAC model.

show abstract

Section: Discussionmentioning

confidence: 99%

Section: Discussionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Situation, Team and Role based Access Control

Kawagoe¹

2011

Journal of Computer Science

View full text Add to dashboard Cite

show abstract

“…In addition, this problem violates user/role and role/permission associations. So, S. Park et al [24] have proposed an improved model entitled Context-Role Based Access Control (CRBAC) model retaining the notion of permission in RBAC and adds a new notion of Context-role which is similar to Environment roles in GRBAC and represents environment state of the system by a mapping context-roles and context information. By using the uniform notion of a role to capture both user and context attributes, they will build an access control model that grants and applies permissions to users according to current context information.…”

Section: Fig 2 System Flow Diagram Of Role Based Access Control Modementioning

confidence: 99%

Design of Algorithm for Environment based Dynamic Access Control Model for Database Systems

Ahmad¹,

Ahmad²

2011

IJCA

View full text Add to dashboard Cite

With the fast growing nature of enterprise business especially with the emergence of information technology, we are moving towards the era where database systems have become mandatory for the organizations to implement. Because of this, it has become very important to specify such access control model for the database systems in organizations that must ensure the security of information but at the same time dynamic. Conventionally, access control models stress on pre-defined users for which access level is pre-determined by the database administrator. Considering the need of today's business, that has become borderless, and most of unknown users also attempt to access the information, we present a design algorithm for access control model that can handle for both existing and unknown users of the database. The algorithm deals with three major parts, Environment Check, Roles and Permissions Check and finally the increment and decrement of permissions dynamically.

show abstract

“…We make use of context in our system for sharing context as well as for restricting the sharing of context using context constraints while RBAC model [15] does not make use of context for these purposes. Some other systems which made use of context in RBAC include [4] and [14]. Hybrid policy used in our system may result in policy conflicts which are handled by defining priorities for different entities and different types of rules.…”

Section: Background and Related Workmentioning

confidence: 99%

An intelligent information sharing control system for dynamic collaborations

Malik

Dustdar

2010

Proceedings of the 8th International Conference on Frontiers of Information Technology

View full text Add to dashboard Cite

Information sharing is a basic requirement in Collaborative Working Environment (CWE), yet privacy of the owner of shared information needs special attention. Personal information and shared information coexist in enterprise-based users, teams, and their activities. Distributed and dynamic collaborations in CWE are a challenge for privacy preservation due to lack of trust among users and thus require an intelligent sharing control policy. Our system intelligently monitors and analysis status of collaborating users, plans sharing control activities according to changing collaborative relationships, user interactions, and context conditions which help in dynamic adaptation of sharing control policy. We present an intelligent sharing control architecture, its implementation, and discussion using Web services and an intelligent context sharing messenger application.

show abstract

Context-Role Based Access Control for Context-Aware Application

Cited by 46 publications

References 4 publications

Situation, Team and Role based Access Control

Situation, Team and Role based Access Control

Design of Algorithm for Environment based Dynamic Access Control Model for Database Systems

An intelligent information sharing control system for dynamic collaborations

Contact Info

Product

Resources

About