Affiliation:
1. Hubei University of Education
Abstract
As computing technology becomes more pervasive and mobile services are deployed, applications will need flexible access control mechanisms. Unlike traditional approaches based on the identity/role for access control, access decisions for these applications will depend on the combination of the required attributes of users and the contextual information. This paper proposes a semantic-aware context-based access control framework (called SA_CBAC) to be applied in mobile web services environment by combining semantic web technologies with context-based access control mechanism. In order to handle context information in the framework, this paper proposes a context ontology to represent contextual information and employ it in the inference engine. This paper also focuses on access control policies and addresses these issues by representing context, user attributes and resource attributes in knowledge base and extending XACML to incorporate the knowledge base.
Publisher
Trans Tech Publications, Ltd.
Reference16 articles.
1. P. Farley, and M. Capp, Mobile web Services, BT Technology Journal, vol. 23, no. 2, pp.202-213, April (2005).
2. N.S. Satish, J. Matthias, and P. Wolfgang, Security analysis of mobile web service provisioning, International Journal of Internet Technology and Secured Transactions, vol. 1, no. 1, pp.151-171, (2007).
3. M. Liu, D. Xie, and P. Li, Semantic access control for web services, In proceedings of 2009 International Conference on Networks Security, Wireless Communications and Trusted Computing, 2009, pp.55-58.
4. S. Javanmardi, M. Amini, R. Jalili, and Y. Ganjisaffari, SBAC: semantic based access control, In proceedings of the 11th Nordic Workshop on Secure IT-Systems, 2006. pp.157-168.
5. D.L. McGuinness, and F. van Harmelen, OWL web ontology language semantics and abstract synatx, 2004. http: /www. w3. org/TR/owl-semantics.
Cited by
1 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献