论文信息 - Supporting attribute-based access control with ontologies

Supporting attribute-based access control with ontologies

In highly open systems like the Internet, attribute-based access control (ABAC) has proven its appropriateness. The specification and maintenance of ABAC policies however has turned out to be complex and error-prone, especially if heterogeneous attribute schemes are involved. Here, the arising semantic Web can contribute to a solution. This paper presents an approach based on an extension of the established XACML standard. It simplifies the policies by providing an ontology-based attribute management facility.

[1] Ernesto Damiani,et al. Extending Policy Languages to the Semantic Web , 2004, ICWE.

[2] José M. Troya,et al. Applying the semantic Web layers to access control , 2003, 14th International Workshop on Database and Expert Systems Applications, 2003. Proceedings..

[3] Jeffrey M. Bradshaw,et al. Semantic Web Languages for Policy Representation and Reasoning: A Comparison of KAoS, Rei, and Ponder , 2003, SEMWEB.

[4] Jeffrey M. Bradshaw,et al. KAoS policy and domain services: toward a description-logic approach to policy representation, deconfliction, and enforcement , 2003, Proceedings POLICY 2003. IEEE 4th International Workshop on Policies for Distributed Systems and Networks.

[5] Jeremy J. Carroll,et al. Resource description framework (rdf) concepts and abstract syntax , 2003 .

[6] Ramaswamy Chandramouli,et al. The Queen's Guard: A Secure Enforcement of Fine-grained Access Control In Distributed Data Analytics Platforms , 2001, ACM Trans. Inf. Syst. Secur..

[7] Dan Brickley,et al. Rdf vocabulary description language 1.0 : Rdf schema , 2004 .

[8] H. Lan,et al. SWRL : A semantic Web rule language combining OWL and ruleML , 2004 .

[9] Günther Pernul,et al. ABAC - Ein Referenzmodell für attributbasierte Zugriffskontrolle , 2005, Sicherheit.

[10] Eduardo B. Fernández,et al. A Pattern System for Access Control , 2004, DBSec.

[11] Timothy W. Finin,et al. A Policy Based Approach to Security for the Semantic Web , 2003, SEMWEB.