Semantic access control model: a formal specification

Authors:
Mariemma I. Yagüe;María-del-Mar Gallardo;Antonio Maña
Affiliations:
Dpto. de Lenguajes y Ciencias de la Computación, University of Málaga, Málaga, Spain;Dpto. de Lenguajes y Ciencias de la Computación, University of Málaga, Málaga, Spain;Dpto. de Lenguajes y Ciencias de la Computación, University of Málaga, Málaga, Spain
Venue:
ESORICS'05 Proceedings of the 10th European conference on Research in Computer Security
Year:
2005

Citing 13
Cited 4

Role-Based Access Control Models

Computer
XML document security based on provisional authorization

Proceedings of the 7th ACM conference on Computer and communications security
The role of trust management in distributed systems security

Secure Internet programming
A fine-grained access control system for XML documents

ACM Transactions on Information and System Security (TISSEC)
Securing XML Documents with Author-X

IEEE Internet Computing
A MAC Policy Framework for Multilevel Relational Databases

IEEE Transactions on Knowledge and Data Engineering
Access Control: Policies, Models, and Mechanisms

FOSAD '00 Revised versions of lectures given during the IFIP WG 1.7 International School on Foundations of Security Analysis and Design on Foundations of Security Analysis and Design: Tutorial Lectures
The PERMIS X.509 role based privilege management infrastructure

Future Generation Computer Systems - Special section: Selected papers from the TERENA networking conference 2002
Integrating PMI services in CORBA applications

Computer Standards & Interfaces - CORBA: protocols, applications, process models and standards
A Logical Language for Expressing Authorizations

SP '97 Proceedings of the 1997 IEEE Symposium on Security and Privacy
Applying the Semantic Web Layers to Access Control

DEXA '03 Proceedings of the 14th International Workshop on Database and Expert Systems Applications
Certificate-based access control for widely distributed resources

SSYM'99 Proceedings of the 8th conference on USENIX Security Symposium - Volume 8
Decentralized trust management

SP'96 Proceedings of the 1996 IEEE conference on Security and privacy

A semantic web based framework for social network access control

Proceedings of the 14th ACM symposium on Access control models and technologies
A semantic-based access control mechanism using semantic technologies

Proceedings of the 2nd international conference on Security of information and networks
Ontology-based matching of security attributes for personal data access in e-health

OTM'11 Proceedings of the 2011th Confederated international conference on On the move to meaningful internet systems - Volume Part II
Ontology based hybrid access control for automatic interoperation

ATC'07 Proceedings of the 4th international conference on Autonomic and Trusted Computing

Quantified Score

Hi-index	0.00

Visualization

Abstract

The Semantic Access Control Model (SAC), built on the basis of separation of the authorization and access control management responsibilities, provides adequate solutions to the problems of access control in distributed and dynamic systems with heterogeneous security requirements. SAC is characterized by its flexibility for accommodating dissimilar security policies, but also by the ease of management and control over a large number of distributed elements and the support for interoperability of authorization mechanisms. In this paper, we present the semantic validation algorithms developed in SAC to detect semantically incomplete or incorrect access control policies. Additionally, the formal model of SAC along with some proofs of its soundness is introduced. This formalization is the basis for additional model checking of the semantic validation algorithms developed.