Research on Usage Control Model with Delegation Characteristics Based on OM-AM Methodology

Authors:
Zhiyong Zhang;Lin Yang;Qingqi Pei;Jianfeng Ma
Affiliations:
Xidian University, Xi' an 710071, China;China Electronic Equipment & Systems Engineering Corporation;China Electronic Equipment & Systems Engineering Corporation;China Electronic Equipment & Systems Engineering Corporation
Venue:
NPC '07 Proceedings of the 2007 IFIP International Conference on Network and Parallel Computing Workshops
Year:
2007

Citing 0
Cited 3

An administrative model for UCONABC

AISC '10 Proceedings of the Eighth Australasian Conference on Information Security - Volume 105
Survey: Usage control in computer security: A survey

Computer Science Review
A new approach for delegation in usage control

Proceedings of the third ACM conference on Data and application security and privacy

Quantified Score

Hi-index	0.00

Visualization

Abstract

UCONABC is a basic framework of next generation access control policy Usage Control that is composed of Authorization-oBlige-Condition components, but so far it lacks of important delegation characteristic. The paper analyses the behaviors of delegation in UCON based on OM-AM engineering principles, presents a formalized usage control model with delegation features using BNF Extensions, called as UCOND, and further articulates its hybrid architecture based on Client & Server Delegation Reference Monitors and relative key protocol functions. UCOND is an extension model of UCONABC in the aspect of delegation authorization, and it resolves the delegation question of Usage Control Model. Moreover, we specify delegation procedure of an application for Digital Medium Resource Distribution System.