Affiliation:
1. University of Cologne, Cologne, Germany
2. Politecnico di Milano, Milano, Italy
Abstract
Access control management in a System of Systems---i.e., a collaborative environment composed of a multitude of distributed autonomous organizations---is a challenging task. To answer the challenge, in this paper we propose a novel approach that incorporates semantic technologies in the Attribute-Based Access Control (ABAC) approach. Building on the basic principles of ABAC, our approach allows for a highly expressive modeling of the context in which access decisions are made, by providing mechanisms to describe rich relationships among entities, which can evolve over time. In addition, our system works in a truly decentralized manner, which makes it suitable for geographically distributed enterprise systems. We show the feasibility in practice of our approach through some experimental results.
Publisher
Association for Computing Machinery (ACM)
Subject
Industrial and Manufacturing Engineering
Reference37 articles.
1. e Xtensible Access Control Markup Language (XACML) version 3.0. Technical report , OASIS , 2013 . eXtensible Access Control Markup Language (XACML) version 3.0. Technical report, OASIS, 2013.
2. A Web Service Architecture for Enforcing Access Control Policies
3. A survey on context-aware systems
4. Fine-grained Context-aware Access Control for Smart Devices
5. Label-Based Access Control
Cited by
7 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献