Computational Issues in Secure Interoperation
IEEE Transactions on Software Engineering
Providing Security and Interoperation of HeterogeneousSystems
Distributed and Parallel Databases - Security of data and transaction processing
Authorization specification and enforcement in federated database systems
Journal of Computer Security
ICDE '96 Proceedings of the Twelfth International Conference on Data Engineering
The Complexity and Composability of Secure Interoperation
SP '94 Proceedings of the 1994 IEEE Symposium on Security and Privacy
Applying the Semantic Web Layers to Access Control
DEXA '03 Proceedings of the 14th International Workshop on Database and Expert Systems Applications
Using a Layered Approach for Interoperability on the Semantic Web
WISE '03 Proceedings of the Fourth International Conference on Web Information Systems Engineering
Concept-level access control for the Semantic Web
Proceedings of the 2003 ACM workshop on XML security
Access Control for Semantic Web Services
ICWS '04 Proceedings of the IEEE International Conference on Web Services
Jena: implementing the semantic web recommendations
Proceedings of the 13th international World Wide Web conference on Alternate track papers & posters
OREL: an ontology-based rights expression language
Proceedings of the 13th international World Wide Web conference on Alternate track papers & posters
Towards secure information sharing using role-based delegation
Journal of Network and Computer Applications - Special issue: Network and information security: A computational intelligence approach
A semantic approach for access control in web services
EuroWeb'02 Proceedings of the 2002 international conference on EuroWeb
A Secure Mediator for Integrating Multiple Level Access Control Policies
KES '08 Proceedings of the 12th international conference on Knowledge-Based Intelligent Information and Engineering Systems, Part II
Establishing RBAC-based secure interoperability in decentralized multi-domain environments
ICISC'07 Proceedings of the 10th international conference on Information security and cryptology
Fine-grained sticky provenance architecture for office documents
IWSEC'07 Proceedings of the Security 2nd international conference on Advances in information and computer security
Mediator-free secure policy interoperation of exclusively-trusted multiple domains
ISPEC'08 Proceedings of the 4th international conference on Information security practice and experience
Access control policies for semantic networks
POLICY'09 Proceedings of the 10th IEEE international conference on Policies for distributed systems and networks
RAR: A role-and-risk based flexible framework for secure collaboration
Future Generation Computer Systems
Ontology-based matching of security attributes for personal data access in e-health
OTM'11 Proceedings of the 2011th Confederated international conference on On the move to meaningful internet systems - Volume Part II
Ontology based hybrid access control for automatic interoperation
ATC'07 Proceedings of the 4th international conference on Autonomic and Trusted Computing
Access control for semantic data federations in industrial product-lifecycle management
Computers in Industry
A semantic authorization model for pervasive healthcare
Journal of Network and Computer Applications
| Hi-index | 0.00 |
Sharing information across different organizations is a critical problem. Using security enforcement mechanisms, accessing databases is limited to authorized users only. However, if databases and access control policies are syntactically and schematically heterogeneous, information interoperation becomes a crucial challenge. In order to allow users from multiple organizations to access databases, a better access control model is desired. In this paper, we propose Semantic Access Control based on popular Role-Base Access Control. Semantic Access Control provides secure access control to databases while resolving the heterogeneity among the databases. We present Semantic Access Control Enabler (SACE), a novel middleware-based system that has been designed and implemented to enable Semantic Access Control on the Web. SACE is a middleware system that requires only a few changes to be done on the legacy systems of any organizations involved. Unlike traditional mediator technologies, we integrate heterogeneity resolution and access control into one process. We show that despite performing ontology mappings and query and data translations our toolkit still provides acceptable performance.