Spatial context in role-based access control

Authors:
Hong Zhang;Yeping He;Zhiguo Shi
Affiliations:
Institute of Software, Chinese Academy of Sciences, Beijing, PRC;Institute of Software, Chinese Academy of Sciences, Beijing, PRC;Institute of Software, Chinese Academy of Sciences, Beijing, PRC
Venue:
ICISC'06 Proceedings of the 9th international conference on Information Security and Cryptology
Year:
2006

Citing 13
Cited 0

Role-Based Access Control Models

Computer
Team-based access control (TMAC): a primitive for applying role-based access controls in collaborative environments

RBAC '97 Proceedings of the second ACM workshop on Role-based access control
Securing context-aware applications using environment roles

SACMAT '01 Proceedings of the sixth ACM symposium on Access control models and technologies
Proposed NIST standard for role-based access control

ACM Transactions on Information and System Security (TISSEC)
A context-related authorization and access control method based on RBAC:

SACMAT '02 Proceedings of the seventh ACM symposium on Access control models and technologies
Context sensitivity in role-based access control

ACM SIGOPS Operating Systems Review
A Small Set of Formal Topological Relationships Suitable for End-User Interaction

SSD '93 Proceedings of the Third International Symposium on Advances in Spatial Databases
A Context-Sensitive Access Control Model and Prototype Implementation

Proceedings of the IFIP TC11 Fifteenth Annual Working Conference on Information Security for Global Information Infrastructures
A Hybrid Location Model with a Computable Location Identifier for Ubiquitous Computing

UbiComp '02 Proceedings of the 4th international conference on Ubiquitous Computing
Modelling Contexts in the Or-BAC Model

ACSAC '03 Proceedings of the 19th Annual Computer Security Applications Conference
Implementing access control to people location information

Proceedings of the ninth ACM symposium on Access control models and technologies
GEO-RBAC: a spatially aware RBAC

Proceedings of the tenth ACM symposium on Access control models and technologies
Context sensitive access control

Proceedings of the tenth ACM symposium on Access control models and technologies

Quantified Score

Hi-index	0.00

Visualization

Abstract

Controlling access to resources in location-based services and mobile applications require the definition of spatially aware access control systems. However, traditional RBAC model does not specify these requirements. In this paper, we present an extension of the RBAC model to deal with spatial and location-based information, which called LRBAC. In LRBAC, the final permission set of a user depends on the physical location in which a user is situated. The ability to specify the spatial boundary of the role allows LRBAC to be flexible and express a variety of access policies that can provide tight and just-in-time role activation. Besides a real position obtained from a specific mobile terminal, users are also assigned a logical location domain that is application dependent. Then, we extend LRBAC to deal with hierarchies and present how complex spatial role hierarchies in the location-dependent case can be generated by applying Cartesian products as an arithmetic operation over role hierarchies and logical location domain hierarchies.