Context-based access control

Various use cases require flexible and dynamic access control management. This paper proposes security contexts and affinities for handling context-based access control for shared resources in a flexible way. It identifies components that can benefit very much from hypermedia models in terms of flexibility and extensibility. In addition, behavior components being able to interpret specific kinds of structures are suggested. This enables access control models that can be dynamically adapted and extended.

[1]  Birgit Pfitzmann,et al.  Privacy in browser-based attribute exchange , 2002, WPES '02.

[2]  Jörg M. Haake,et al.  Arguments for open structure execution services , 2002 .

[3]  Peter J. Nürnberg,et al.  Hypermedia operating systems: a new paradigm for computing , 1996, HYPERTEXT '96.

[4]  Weigang Wang,et al.  Organizing shared enterprise workspaces using component-based cooperative hypermedia , 2001, HYPERTEXT '01.

[5]  Günter Karjoth The Authorization Service of Tivoli Policy Director , 2001, Seventeenth Annual Computer Security Applications Conference.

[6]  Peter J. Nürnberg,et al.  A Grand Unified Theory for Structural Computing , 2003, Metainformatics.

[7]  Martin R. Wolf,et al.  K3 User Guide , 2000 .

[8]  Joshua J. Bloch Effective Java : programming language guide , 2001 .

[9]  Dimitris Christodoulakis,et al.  Structuring primitives in the Callimachus component-based open hypermedia system , 2003, J. Netw. Comput. Appl..

[10]  E. James Whitehead,et al.  Web Distributed Authoring and Versioning (WebDAV) Access Control Protocol , 2004, RFC.

[11]  Christopher G. Lasater,et al.  Design Patterns , 2008, Wiley Encyclopedia of Computer Science and Engineering.

[12]  Peter J. Nürnberg Building Metainformatical Bridges , 2002, Metainformatics.

[13]  Siegfried Reich,et al.  Trailist---focusing on document activity for assisting navigation , 2001, HYPERTEXT '01.

[14]  P. Samarati,et al.  Access control: principle and practice , 1994, IEEE Communications Magazine.

[15]  Prasun Dewan,et al.  Access control for collaborative environments , 1992, CSCW '92.

[16]  Jan Camenisch,et al.  Design and implementation of the idemix anonymous credential system , 2002, CCS '02.

[17]  Birgit Pfitzmann,et al.  BBAE -- A General Protocol for Browser-based Attribute Exchange , 2002 .

[18]  Peter J. Nürnberg,et al.  As we should have thought , 1997, HYPERTEXT '97.

[19]  Peter J. Nürnberg,et al.  Multiple open services: a new approach to service provision in open hypermedia systems , 2001, HYPERTEXT '01.

[20]  Thorsten Hampel Access Rights - The Keys to Cooperative Work/Learning , 2004, Metainformatics.

[21]  Anneke Kleppe,et al.  The object constraint language: precise modeling with UML , 1998 .

[22]  D. Engelbart TOWARD HIGH-PERFORMANCE ORGANIZATIONS: A STRATEGIC ROLE FOR GROUPWARE , 1992 .

[23]  Weigang Wang,et al.  Team-and-role-based organizational context and access control for cooperative hypermedia environments , 1999, Hypertext.

[24]  Ethan Cerami,et al.  Web Services Essentials , 2002 .

[25]  Jörg M. Haake,et al.  End-user controlled group formation and access rights management in a shared workspace system , 2004, CSCW.

[26]  Klaus Tochtermann Personalization in Knowledge Management , 2002, Metainformatics.

[27]  Aviel D. Rubin,et al.  Risks of the Passport single signon protocol , 2000, Comput. Networks.

[28]  Benedict G. E. Wiedemann Protection? , 1998, Science.

[29]  Jocelyne Nanard,et al.  IUHM: a hypermedia-based model for integrating open services, data and metadata , 2003, HYPERTEXT '03.

[30]  Catherine A. Meadows,et al.  Analyzing the Needham-Schroeder Public-Key Protocol: A Comparison of Two Approaches , 1996, ESORICS.

[31]  Birgit Pfitzmann,et al.  Token-based Web Single Signon with Enabled Clients , 2002 .

[32]  Kenneth M. Anderson,et al.  Unifying structure, behavior, and data with themis types and templates , 2004, HYPERTEXT '04.

[33]  Gustavo Rossi,et al.  A Structural Computing Model for Dynamic Service-Based Systems , 2003, Metainformatics.

[34]  Weigang Wang,et al.  A Meta-modeling Environment for Cooperative Knowledge Management , 2002, Metainformatics.