A Context-Aware Access Control Framework for Software Services

被引:0
|
作者
Kayes, A. S. M. [1 ]
Han, Jun [1 ]
Colman, Alan [1 ]
机构
[1] Swinburne Univ Technol, Fac Sci Engn & Technol, Hawthorn, Vic 3122, Australia
关键词
Context-awareness; context; context-aware access control; situation; situation-aware access control; access control policy;
D O I
暂无
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
In the present age, context-awareness is an important aspect of the dynamic environments and the different types of dynamic context information bring new challenges to access control systems. Therefore, the need for the new access control frameworks to link their decision making abilities with the context-awareness capabilities have become increasingly significant. The main goal of this research is to develop a new access control framework that is capable of providing secure access to information resources or software services in a context-aware manner. Towards this goal, we propose a new semantic policy framework that extends the basic role-based access control (RBAC) approach with both dynamic associations of user-role and role-service capabilities. We also introduce a context model in modelling the basic and high-level context information relevant to access control. In addition, a situation can be determined on the fly so as to combine the relevant states of the entities and the purpose or user's intention in accessing the services. For this purpose, we can propose a situation model in modelling the purpose-oriented situations. Finally we need a policy model that will let the users to access resources or services when certain dynamically changing conditions (using context and situation information) are satisfied.
引用
收藏
页码:569 / 577
页数:9
相关论文
共 50 条
  • [1] Authentication and access control agent framework for context-aware services
    Nishiki, K
    Tanaka, E
    [J]. 2005 SYMPOSIUM ON APPLICATIONS AND THE INTERNET WORKSHOPS, PROCEEDINGS, 2005, : 200 - 203
  • [2] An Ontology-Based Approach to Context-Aware Access Control for Software Services
    Kayes, A. S. M.
    Han, Jun
    Colman, Alan
    [J]. WEB INFORMATION SYSTEMS ENGINEERING - WISE 2013, PT I, 2013, 8180 : 410 - 420
  • [3] OntCAAC: An Ontology-Based Approach to Context-Aware Access Control for Software Services
    Kayes, A. S. M.
    Han, Jun
    Colman, Alan
    [J]. COMPUTER JOURNAL, 2015, 58 (11): : 3000 - 3034
  • [4] A Context-Aware Framework for Flowable Services
    Shtykh, Roman Y.
    Zhu, Yishui
    Jin, Qun
    [J]. THIRD INTERNATIONAL CONFERENCE ON MULTIMEDIA AND UBIQUITOUS ENGINEERING (MUE 2009), 2009, : 251 - +
  • [5] A Semantic Policy Framework for Context-Aware Access Control Applications
    Kayes, A. S. M.
    Han, Jun
    Colman, Alan
    [J]. 2013 12TH IEEE INTERNATIONAL CONFERENCE ON TRUST, SECURITY AND PRIVACY IN COMPUTING AND COMMUNICATIONS (TRUSTCOM 2013), 2013, : 753 - 762
  • [6] An intelligent software agent for context-aware services
    Park, Myon-Woong
    Ha, Sungdo
    Park, Ji-Hyung
    Kim, Tae-Soo
    [J]. WMSCI 2005: 9th World Multi-Conference on Systemics, Cybernetics and Informatics, Vol 10, 2005, : 246 - 249
  • [7] A dynamic context-aware access control architecture for e-services
    Kapsalis, Vassilis
    Hadellis, Loukas
    Karelis, Dimitris
    Koubias, Stavros
    [J]. COMPUTERS & SECURITY, 2006, 25 (07) : 507 - 521
  • [8] Context-aware provisional access control
    Masoumzadeh, Amir Reza
    Amini, Morteza
    Jalili, Rasool
    [J]. INFORMATION SYSTEMS SECURITY, PROCEEDINGS, 2006, 4332 : 132 - +
  • [9] A context-aware access control framework for e-service provision
    Kapsalis, Vassilis
    Karelis, Dimitris
    Hadellis, Loukas
    Papadopoulos, George
    [J]. 2005 IEEE INTERNATIONAL CONFERENCE ON INDUSTRIAL TECHNOLOGY - (ICIT), VOLS 1 AND 2, 2005, : 996 - 1001
  • [10] CAFS: A Framework for Context-Aware Federated Services
    Ferdous, Md. Sadek
    Poet, Ron
    [J]. 2014 IEEE 13TH INTERNATIONAL CONFERENCE ON TRUST, SECURITY AND PRIVACY IN COMPUTING AND COMMUNICATIONS (TRUSTCOM), 2014, : 130 - 139