HAM: a general purpose hypertext abstract machine
Communications of the ACM
Petri-net-based hypertext: document structure with browsing semantics
ACM Transactions on Information Systems (TOIS)
A data model for flexible hypertext database systems
ACM Transactions on Information Systems (TOIS)
Integrity principles and mechanisms in database management systems
Computers and Security
Multimedia and hypertext: the Internet and beyond
Multimedia and hypertext: the Internet and beyond
Multilevel security for information retrieval systems—II
Information and Management
Role-Based Access Control Models
Computer
High-level security issues in multimedia/hypertext systems
Proceedings of the IFIP TC6/TC11 international conference on Communications and multimedia security II
A flexible authorization mechanism for relational data management systems
ACM Transactions on Information Systems (TOIS)
Definition of integrity policies for web-based applications
Integrity and internal control information systems
A lattice model of secure information flow
Communications of the ACM
Modeling the Dynamic Behavior of Hypermedia Applications
IEEE Transactions on Software Engineering
Hypermedia and the Web: An Engineering Approach
Hypermedia and the Web: An Engineering Approach
Multimedia Systems: An Overview
IEEE MultiMedia
Lattice-Based Access Control Models
Computer
An Authorization Model for a Distributed Hypertext System
IEEE Transactions on Knowledge and Data Engineering
Web Engineering: A New Discipline for Development of Web-Based Systems
Web Engineering, Software Engineering and Web Application Development
Protection: principles and practice
AFIPS '72 (Spring) Proceedings of the May 16-18, 1972, spring joint computer conference
Requirements for Hypermedia Development Methods: A Survey of Outstanding Methods
CAiSE '02 Proceedings of the 14th International Conference on Advanced Information Systems Engineering
Generation of Personalized Web Courses Using RBAC
AH '02 Proceedings of the Second International Conference on Adaptive Hypermedia and Adaptive Web-Based Systems
Modelling hypermedia and web applications: the Ariadne development method
Information Systems
Modelling hypermedia and web applications: the Ariadne Development Method
Information Systems
A design toolkit for hypermedia applications
ICWE'03 Proceedings of the 2003 international conference on Web engineering
| Hi-index | 0.00 |
As hyperdocuments grow and offer more and more contents and services, some of them become more sensitive and should only be accessed by very specific users. Moreover, hypermedia applications can offer different views and manipulation abilities to different users, depending on the role they play in a particular context. Such security requirements have to be integrated into the development process in such a way that what is understood by a proper and safe manipulation of a hyperdocument has to be analysed, specified and implemented using the appropriate abstractions. In this paper we present a high-level security model applied to the modelling of security policies using components and services belonging to the hypermedia domain. The model uses negative ACLs and context-dependent user permissions for the specification of security rules. An example of its use for the design and operation of a web-based magazine is also described.