A uniform framework for regulating service access and information release on the web
Journal of Computer Security
Advanced Metadata for Privacy-Aware Representation of Credentials
ICDEW '05 Proceedings of the 21st International Conference on Data Engineering Workshops
Modality conflicts in semantics aware access control
ICWE '06 Proceedings of the 6th international conference on Web engineering
Business rules for semantics-aware business modelling: overview and open issues
International Journal of Web Engineering and Technology
XML secure views using semantic access control
Proceedings of the 2010 EDBT/ICDT Workshops
Towards privacy-enhanced authorization policies and languages
DBSec'05 Proceedings of the 19th annual IFIP WG 11.3 working conference on Data and Applications Security
Extending context descriptions in semantics-aware access control
ICISS'06 Proceedings of the Second international conference on Information Systems Security
Hi-index | 0.00 |
In the last few years XML-based access control languages like XACML have been increasingly used for specifying complex policies regulating access to network resources. Today, growing interest in semantic-Web style metadata for describing resources and users is stimulating research on how to express access control policies based on advanced descriptions rather than on single attributes. In this paper, we discuss how standard XACML policies can handle ontology-based resource and subject descriptions based on the standard P3P base data schema. We show that XACML conditions can be transparently expanded according to ontology-based models representing semantics. Our expansion technique greatly reduces the need for online reasoning and decreases the system administrator's effort for producing consistent rules when users' descriptions comprise multiple credentials with redundant attributes.