A Temporal Description Logic Based Access Control Model for Expressing History Constrained Policies in Semantic Web

An access control model for Semantic Web should be compatible with the corresponding semantic model. The access control procedure(s) should also take the semantic relationships between the entities (specified as ontologies) into account. Considering the benefits of logic-based models and the description logic foundation of Semantic Web, in this paper, we propose an access control model based on a temporal variant of description logics (TL-ALCF). This logical schema enables us to express history constrained policies to enrich the policy-base with dynamic properties based on previous accesses.The specification of each component of the model as well as the approach to define history constrained policies along with some clarifying examples are presented. The access control procedure of the model is proposed over the inference services of TL-ALCF.

[1]  Ian Horrocks,et al.  Description Logics as Ontology Languages for the Semantic Web , 2005, Mechanizing Mathematical Reasoning.

[2]  Morteza Amini,et al.  A Semantic aware Access Control model with real time constraints on history of accesses , 2008, 2008 International Multiconference on Computer Science and Information Technology.

[3]  Junghwa Chae Towards Modal Logic Formalization of Role-Based Access Control with Object Classes , 2007, FORTE.

[4]  Morteza Amini,et al.  A Logic for Multi-domain Authorization Considering Administrators , 2008, 2008 IEEE Workshop on Policies for Distributed Systems and Networks.

[5]  James F. Allen Temporal reasoning in plan management , 1998, Proceedings. Fifth International Workshop on Temporal Representation and Reasoning (Cat. No.98EX157).

[6]  Elisa Bertino,et al.  TRBAC: a temporal role-based access control model , 2000, RBAC '00.

[7]  Li Qin,et al.  Concept-level access control for the Semantic Web , 2003, XMLSEC '03.

[8]  Grzegorz Kolaczek,et al.  APPLICATION OF DEONTIC LOGIC IN ROLE-BASED ACCESS CONTROL , 2002 .

[9]  Enrico Franconi,et al.  A Temporal Description Logic for Reasoning about Actions and Plans , 1998, J. Artif. Intell. Res..

[10]  Frédéric Cuppens,et al.  A Deontic Logic for Reasoning about Confidentiality , 1996, DEON.

[11]  Vipin Chaudhary,et al.  History-based access control for mobile code , 1998, CCS '98.

[12]  Michael J. Nash,et al.  The Chinese Wall security policy , 1989, Proceedings. 1989 IEEE Symposium on Security and Privacy.

[13]  Luciano Serafini,et al.  Distributed Instance Retrieval in Heterogeneous Ontologies , 2005, SWAP.

[14]  Enrico Franconi,et al.  A survey of temporal extensions of description logics , 2001, Annals of Mathematics and Artificial Intelligence.

[15]  S. Javanmardi,et al.  SBAC : “ A Semantic – Based Access Control Model ” , 2006 .

[16]  Carsten Lutz,et al.  PSpace Reasoning with the Description Logic ALCF(D) , 2002, Logic Journal of the IGPL.

[17]  Carsten Lutz,et al.  A Correspondence between Temporal Description Logics , 2004, J. Appl. Non Class. Logics.

[18]  Diego Calvanese,et al.  The Description Logic Handbook: Theory, Implementation, and Applications , 2003, Description Logic Handbook.

[19]  Carlos Ribeiro,et al.  Enforcing history-based security policies in mobile agent systems , 2003, Proceedings POLICY 2003. IEEE 4th International Workshop on Policies for Distributed Systems and Networks.

[20]  James F. Allen Temporal reasoning and planning , 1991 .

[21]  Diego Calvanese,et al.  The description logic handbook: theory , 2003 .

[22]  Enrico Franconi,et al.  Representing a robotic domain using temporal description logics , 1999, Artif. Intell. Eng. Des. Anal. Manuf..

[23]  Elisa Bertino,et al.  Temporal Authorization Bases: From Specification to Integration , 2000, J. Comput. Secur..