Context sensitivity in role-based access control

Kumar, Arun; Karnik, Neeran M.; Chafle, Girish

doi:10.1145/567331.567336

Cited by 79 publications

(45 citation statements)

References 8 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Context-aware access control strategies fall in two main categories. The first category is the one of techniques aimed at granting or denying access to resources considering the context of the requesting user and of the resource (see, e.g., [19][20][21]). The second category is the one of techniques aimed at controlling the release of user's context data on the basis of the context of the requesting entity and of the user herself.…”

Section: Network and Cryptographic Protocolsmentioning

confidence: 99%

“…However, the baseline RBAC model is not adequate to pervasive and mobile computing domains, which are characterized by the dynamics of situations that may determine the role played by a given entity in a given context. For this reason, various proposals have been made to extend RBAC policies with contextual conditions (see, e.g., [19]), and in particular with spatio-temporal constraints (e.g., [30]). More recently, this approach has been applied to the privacy protection of personal context data.…”

Section: Network and Cryptographic Protocolsmentioning

confidence: 99%

See 1 more Smart Citation

Privacy in Georeferenced Context-Aware Services: A Survey

Riboni

Pareschi

Bettini

2009

Privacy in Location-Based Applications

View full text Add to dashboard Cite

Abstract. Location based services (LBS) are a specific instance of a broader class of Internet services that are predicted to become popular in a near future: context-aware services. The privacy concerns that LBS have raised are likely to become even more serious when several context data, other than location and time, are sent to service providers as part of an Internet request. This paper provides a classification and a brief survey of the privacy preservation techniques that have been proposed for this type of services. After identifying the benefits and shortcomings of each class of techniques, the paper proposes a combined approach to achieve a more comprehensive solution for privacy preservation in georeferenced context-aware services.

show abstract

Section: Network and Cryptographic Protocolsmentioning

confidence: 99%

Section: Network and Cryptographic Protocolsmentioning

confidence: 99%

Privacy in Georeferenced Context-Aware Services: A Survey

Riboni

Pareschi

Bettini

2009

Privacy in Location-Based Applications

View full text Add to dashboard Cite

show abstract

“…Our concern in this paper is the construction of access control policies that rely on context to inform decisions. (Arguments as to the potential benefits of context-sensitive access control have been made by, for example, [1], [2], and [3].) Specifically, our concern is what might be termed evolving access controlwhereby access control decisions are made on the basis of state.…”

Section: Introductionmentioning

confidence: 99%

“…1 Of course, the use of access control policies can bring many benefits when managing complex systems: by centralising all authorisation decisions, consistency of access can be maintained, and updating a single access control policy is much simpler than modifying multiple components. Nevertheless, creating and updating access control policies is still a potentially time-consuming task.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Conformance Checking of Dynamic Access Control Policies

Power

Slaymaker

Simpson

2011

Formal Methods and Software Engineering

View full text Add to dashboard Cite

Abstract. The capture, deployment and enforcement of appropriate access control policies are crucial aspects of many modern software-based systems. Previously, there has been a significant amount of research undertaken with respect to the formal modelling and analysis of access control policies; however, only a limited proportion of this work has been concerned with dynamic policies. In this paper we explore techniques for the modelling, analysis and subsequent deployment of such policies-which may rely on external data. We use the Alloy modelling language to describe constraints on policies and external data; utilising these constraints, we test static instances constructed from the current state of the external data. We present Gauge, a constraint checker for static instances that has been developed to be complementary to Alloy, and show how it is possible to test systems of much greater complexity via Gauge than can typically be handled by a model finder.

show abstract

PHILharmonicFlows: towards a framework for object‐aware process management

Künzle

Reichert

2011

J. Softw. Maint. Evol.: Res. Pract.

184

137

View full text Add to dashboard Cite

Companies increasingly adopt process management systems (PrMS) that offer promising perspectives for more flexible and efficient process execution. However, there still exist many processes in practice which are not adequately supported by contemporary PrMS. We believe that a major reason for this deficiency stems from the unsatisfactory integration of processes and data in existing PrMS. Despite emerging approaches that address this integration, a unified and comprehensive understanding of object‐awareness in connection with process management is still missing. To remedy this deficiency, we extensively analyzed various processes from different domains which are not adequately supported by existing PrMS. As a major insight we learned that in many cases comprehensive process support requires object‐awareness. In particular, process support has to consider object behavior as well as object interactions, and should therefore be based on two levels of granularity. Besides this, object‐awareness requires data‐driven process execution and integrated access to processes and data. This paper presents the basic properties of object‐aware processes as well as fundamental requirements for their operational support. It further introduces our PHILharmonicFlows framework which addresses these requirements and enables object‐aware process management in a comprehensive manner. Finally, we evaluate this framework along several process scenarios. We believe that a holistic approach integrating data, processes and users offers promising perspectives in order to overcome the numerous limitations of contemporary PrMS. Copyright © 2011 John Wiley & Sons, Ltd.

show abstract

Context sensitivity in role-based access control

Cited by 79 publications

References 8 publications

Privacy in Georeferenced Context-Aware Services: A Survey

Privacy in Georeferenced Context-Aware Services: A Survey

Conformance Checking of Dynamic Access Control Policies

PHILharmonicFlows: towards a framework for object‐aware process management

Contact Info

Product

Resources

About