Principles of database and knowledge-base systems, Vol. I
Principles of database and knowledge-base systems, Vol. I
Modern operating systems
A unified framework for enforcing multiple access control policies
SIGMOD '97 Proceedings of the 1997 ACM SIGMOD international conference on Management of data
Relational transducers for electronic commerce
PODS '98 Proceedings of the seventeenth ACM SIGACT-SIGMOD-SIGART symposium on Principles of database systems
A declarative approach to business rules in contracts: courteous logic programs in XML
Proceedings of the 1st ACM conference on Electronic commerce
Security models for web-based applications
Communications of the ACM
Establishing Business Rules for Inter-Enterprise Electronic Commerce
DISC '00 Proceedings of the 14th International Conference on Distributed Computing
ACM SIGOPS Operating Systems Review
A Communication Agreement Framework for Access/Action Control
SP '96 Proceedings of the 1996 IEEE Symposium on Security and Privacy
A network-centric design for relationship-based rights management
A network-centric design for relationship-based rights management
| Hi-index | 0.00 |
We argue that matrix-based models are inadequate for regulating business to business (or B2B, for short) e-commerce due to the diversity, complexity and potential large number of commercial agreements that have to be supported. To deal with these issues, we propose in this paper an agreement-centric access control model. The paper introduces the concept of communication agreement (CAR) as a means for specifying contractual terms, and presents the CAR enforcement mechanism. We explore the expressive power of the model and show that it can implement regulations which cannot expressed using conventional mechanisms alone. The paper also describes a prototype implementation; the preliminary performance results indicate that the enforcement mechanism is quite affordable, even in its present, experimental stage.