A Flexible Authorization Framework for E-Commerce

Past generations of access control models fail to meet the needs of many applications such as business-to-business (B2B) applications and auctions This paper describes several access control models that have been recently proposed to address these emerging needs including models that are policy-neutral and flexible in that they permit enforcement of multiple policies on the same server, and models that incorporate richer semantics for access control, such as provisions and obligations.

[1]  Silvana Castano,et al.  Database Security , 1997, IFIP Advances in Information and Communication Technology.

[2]  Sushil Jajodia,et al.  Provisions and Obligations in Policy Management and Security Applications , 2002, VLDB.

[3]  Sushil Jajodia,et al.  A logical language for expressing authorizations , 1997, Proceedings. 1997 IEEE Symposium on Security and Privacy (Cat. No.97CB36097).

[4]  John E. Dobson,et al.  A framework for expressing models of security policy , 1989, Proceedings. 1989 IEEE Symposium on Security and Privacy.

[5]  Sushil Jajodia,et al.  Flexible support for multiple access control policies , 2001, TODS.

[6]  Hans Hermann Brüggemann,et al.  Rights in an Object-Oriented Environment , 1991, DBSec.

[7]  Adrian Walker,et al.  Towards a Theory of Declarative Knowledge , 1988, Foundations of Deductive Databases and Logic Programming..

[8]  Michiharu Kudo,et al.  XML document security based on provisional authorization , 2000, CCS.

[9]  Sushil Jajodia,et al.  Obligation monitoring in policy management , 2002, Proceedings Third International Workshop on Policies for Distributed Systems and Networks.

[10]  Sushil Jajodia,et al.  Removing permissions in the flexible authorization framework , 2003, TODS.

[11]  Anup K. Ghosh E-Commerce Security and Privacy , 2001, Advances in Information Security.

[12]  Gail-Joon Ahn,et al.  Role-based authorization constraints specification , 2000, TSEC.

[13]  Jack Minker Foundations of deductive databases and logic programming , 1988 .