The NIST model for role-based access control: towards a unified standard
RBAC '00 Proceedings of the fifth ACM workshop on Role-based access control
The Ponder Policy Specification Language
POLICY '01 Proceedings of the International Workshop on Policies for Distributed Systems and Networks
The eXtensible Rule Markup Language
Communications of the ACM - Wireless networking security
Description logic programs: combining logic programs with description logic
WWW '03 Proceedings of the 12th international conference on World Wide Web
WWW '03 Proceedings of the 12th international conference on World Wide Web
Reviewing the design of DAML+OIL: an ontology language for the semantic web
Eighteenth national conference on Artificial intelligence
POLICY '03 Proceedings of the 4th IEEE International Workshop on Policies for Distributed Systems and Networks
A Policy Language for a Pervasive Computing Environment
POLICY '03 Proceedings of the 4th IEEE International Workshop on Policies for Distributed Systems and Networks
Representation and reasoning for DAML-based policy and domain services in KAoS and nomads
AAMAS '03 Proceedings of the second international joint conference on Autonomous agents and multiagent systems
An Ontology-Based Framework for XML Semantic Integration
IDEAS '04 Proceedings of the International Database Engineering and Applications Symposium
Access-Control Language for Multidomain Environments
IEEE Internet Computing
IEEE Intelligent Systems
Information Sciences: an International Journal
A platform for transcoding heterogeneous markup documents using ontology-based metadata
Journal of Network and Computer Applications
Supporting RBAC with XACML+OWL
Proceedings of the 14th ACM symposium on Access control models and technologies
Using semantic web technologies for policy management on the web
AAAI'06 proceedings of the 21st national conference on Artificial intelligence - Volume 2
Communications of the ACM
A secure collaboration service for dynamic virtual organizations
Information Sciences: an International Journal
Using ontologies to facilitate post-processing of association rules by domain experts
Information Sciences: an International Journal
Semantic Web Technologies for supporting learning assessment
Information Sciences: an International Journal
Composer-Science: A semantic service based framework for workflow composition in e-Science projects
Information Sciences: an International Journal
Peer-to-peer semantic integration of XML and RDF data sources
AP2PC'04 Proceedings of the Third international conference on Agents and Peer-to-Peer Computing
Integrating and exchanging XML data using ontologies
Journal on Data Semantics VI
Information Sciences: an International Journal
Scientific Computing in the Cloud
Computing in Science and Engineering
Ranking semantic relationships between two entities using personalization in context specification
Information Sciences: an International Journal
An ontology-based approach to Chinese semantic advertising
Information Sciences: an International Journal
Semantic Tag-based Profile Framework for Social Tagging Systems
The Computer Journal
| Hi-index | 0.07 |
The eXtensible Access Control Markup Language (XACML) is a standard language for expressing access control policies. The concept of authorization policy has been introduced in XACML-based Web security systems to reduce policy conflicts, enhance policy reusability, simplify policy analysis, and facilitate interoperability. Achieving these goals requires intelligent dynamic authorization. Unfortunately, conventional XACML lacks the computer interpretability needed to support knowledge representation. This study addresses the issue by defining a Multi-layer Semantic XACML Framework (MSACF) for integrating Semantic Web technologies in XACML. Based on the MSACF, this study also develops LAPAR, an intelligent XACML shell consisting of an Ontology Base, an XML-Based Repository, and an Inference Engine to enable different approaches for enhancing knowledge representations. The feasibility of LAPAR is confirmed in a prototype java-based implementation that can be associated with various domain ontologies and knowledge to enable dynamic authorization for different security applications.