Towards usage control models: beyond traditional access control
SACMAT '02 Proceedings of the seventh ACM symposium on Access control models and technologies
Security architectures for controlled digital information dissemination
ACSAC '00 Proceedings of the 16th Annual Computer Security Applications Conference
Models and Languages for Digital Rights
HICSS '01 Proceedings of the 34th Annual Hawaii International Conference on System Sciences ( HICSS-34)-Volume 9 - Volume 9
SP '92 Proceedings of the 1992 IEEE Symposium on Security and Privacy
DigiBox: a self-protecting container for information commerce
WOEC'95 Proceedings of the 1st conference on USENIX Workshop on Electronic Commerce - Volume 1
Hi-index | 0.00 |
Originator Control is an access control policy thatrequires recipients to gain originator's approval for re-disseminationof disseminated digital object. Originatorcontrol policies are one of the generic and key concerns ofusage control. Usage control is an emerging concept whichencompasses traditional access control and digital rightsmanagement solutions. However, current commercialDigital Rights Management (DRM) solutions lackenforcement of access control policies such as role-basedaccess control (RBAC), mandatory access control (MAC),discretionary access control (DAC) and originator controlbecause their control of access to digital object is mainlybased on payment.In this paper, we attempt to combine originator controlpolicies and usage control. Then we show how this canextend traditional originator control solutions to enforceaccess control policies even outside of a local controlenvironment where a central control authority is notavailable. License and ticket concepts are proposed andused for originator control in usage control. Also, wedefine seven different solution approaches to deal withvarious dissemination situations. In addition, we discusssome published DRM solutions and relate these to oursolution approaches.