An OWL-Based approach for RBAC with negative authorization

Authors:
Nuermaimaiti Heilili;Yang Chen;Chen Zhao;Zhenxing Luo;Zuoquan Lin
Affiliations:
LMAMDepartment of Information Science,School of Math., Peking University, Beijing, China;LMAMDepartment of Information Science,School of Math., Peking University, Beijing, China;LMAMDepartment of Information Science,School of Math., Peking University, Beijing, China;LMAMDepartment of Information Science,School of Math., Peking University, Beijing, China;LMAMDepartment of Information Science,School of Math., Peking University, Beijing, China
Venue:
KSEM'06 Proceedings of the First international conference on Knowledge Science, Engineering and Management
Year:
2006

Citing 14
Cited 1

Authorizations in relational database management systems

CCS '93 Proceedings of the 1st ACM conference on Computer and communications security
Flexible support for multiple access control policies

ACM Transactions on Database Systems (TODS)
A model of OASIS role-based access control and its support for active security

ACM Transactions on Information and System Security (TISSEC)
A logical framework for reasoning about access control models

ACM Transactions on Information and System Security (TISSEC)
An Extended Authorization Model for Relational Databases

IEEE Transactions on Knowledge and Data Engineering
Reasoning About Security: A Logic and a Decision Method for Role-Based Access Control

ECSQARU/FAPR '97 Proceedings of the First International Joint Conference on Qualitative and Quantitative Practical Reasoning
The Ponder Policy Specification Language

POLICY '01 Proceedings of the International Workshop on Policies for Distributed Systems and Networks
RACER System Description

IJCAR '01 Proceedings of the First International Joint Conference on Automated Reasoning
KAoS Policy and Domain Services: Toward a Description-Logic Approach to Policy Representation, Deconfliction, and Enforcement

POLICY '03 Proceedings of the 4th IEEE International Workshop on Policies for Distributed Systems and Networks
A Policy Language for a Pervasive Computing Environment

POLICY '03 Proceedings of the 4th IEEE International Workshop on Policies for Distributed Systems and Networks
Representation and reasoning for DAML-based policy and domain services in KAoS and nomads

AAMAS '03 Proceedings of the second international joint conference on Autonomous agents and multiagent systems
The description logic handbook: theory, implementation, and applications

The description logic handbook: theory, implementation, and applications
Rule-Based RBAC with Negative Authorization

ACSAC '04 Proceedings of the 20th Annual Computer Security Applications Conference
Representation and reasoning on RBAC: a description logic approach

ICTAC'05 Proceedings of the Second international conference on Theoretical Aspects of Computing

An architecture for specification and enforcement of temporal access control constraints using OWL

Proceedings of the 2009 ACM workshop on Secure web services

Quantified Score

Hi-index	0.00

Visualization

Abstract

Access control is an important issue related to the security on the Semantic Web. Role-Based Access Control (RBAC) is commonly considered as a flexible and efficient model in practice. In this paper, we provide an OWL-based approach for RBAC in the Semantic Web context. First we present an extended model of RBAC with negative authorization, providing detailed analysis of conflicts. Then we use OWL to formalize the extended model. Additionally, we show how to use an OWL-DL reasoner to detect the potential conflicts in the extended model.