A Generalized Temporal and Spatial Role-Based Access Control Model

Securing access to data, applied to mobile service applications with temporal and spatial controlling, requires constructing innovative definitions with temporal and spatial limitations for an access-control system. To cope with the temporal and spatial requirements, we propose a generalized Temporal and Spatial RBAC (TSRBAC) model. In the TSRBAC model, temporal-period and spatial-location based entities are used to constrain the permissions of objects, user positions, and geographically bounded roles. Furthermore, we also present temporal and spatial relations of Temporal and Spatial Separation of Duties (TSSSD), Temporal and Spatial Dynamic Separation of Duties (TSDSD) constraints in the TSRBAC model.

[1]  Ramaswamy Chandramouli,et al.  The Queen's Guard: A Secure Enforcement of Fine-grained Access Control In Distributed Data Analytics Platforms , 2001, ACM Trans. Inf. Syst. Secur..

[2]  Elisa Bertino,et al.  TRBAC , 2001, ACM Trans. Inf. Syst. Secur..

[3]  Ravi S. Sandhu,et al.  Configuring role-based access control to enforce mandatory and discretionary access control policies , 2000, TSEC.

[4]  Vladimir A. Oleshchuk,et al.  Spatial role-based access control model for wireless networks , 2003, 2003 IEEE 58th Vehicular Technology Conference. VTC 2003-Fall (IEEE Cat. No.03CH37484).

[5]  Ravi S. Sandhu,et al.  Role-Based Access Control Models , 1996, Computer.

[6]  Kien A. Hua,et al.  Real-time processing of range-monitoring queries in heterogeneous mobile databases , 2006, IEEE Transactions on Mobile Computing.

[7]  Elisa Bertino,et al.  A generalized temporal role-based access control model , 2005, IEEE Transactions on Knowledge and Data Engineering.