Abstract
As Internet expands, many enterprise systems require managing security policies in a distributed environment in order to complement any authorization framework. The eXtensible Markup Language (XML) allows the system to represent security policy properly in a heterogeneous, distributed environment. In access control model, the security problem exists not only on subject but also on object side too. Moreover, when the system is expanded to ubiquitous computing environment, there are more privacy invasion problems than current Internet services. Proper representation of relationship in access control mechanism can be a solution for privacy invasion problem. In this paper, we develop XML Document Type Definition (DTD) and XML schema for representing the schema of the relationship-based access control model. This model supports object privacy since it introduces a new constraint called relationship between subject and object. It supports more constraints on object’s policy than current Role-based Access Control Model (RBAC) does.
This Paper is supported by Seoul R& BD Program.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Stajano, F., Anderson, R.: The Resurrecting Duckling: Security Issues for Ubiquitous Computing, IEEE security and Privacy (2002)
Bussard, L., Roudier, Y.: Authentication in Ubiquitous Computing, UbiCom 2002 (2002)
Barkley, J., Beznosov, K., Uppal, J.: Supporting Relationships in Access Control Using Role Based Access Control. In: Proceedings of the Fourth ACM Workshop on Role-Based Access Control, pp. 55–65 (1999)
Choun, E.H.: A Model and administration of Role Based Privileges Enforcing Separation of Duty. Ph.D. Dissertation, Ajou University (1998)
Ahn, G., Sandhu, R.: Role-Based Authorization Constraints Specification. ACM Transactions on Information and System Security 3(4), 207–226 (2000)
Byun, J., Bertino, E., Li, L.: Purposed based access control of complex data for privacy protection.CERIAS Tech Report 2005, 12 (2005)
Ahn, G., Sandhu, R.: Role-Based Authorization Constraints Specification. ACM Transactions on Information and System Security 3(4), 207–226 (2000)
Bertino, E., Bonatti, P.A., Ferrari, E.: A Temporal Role-Based Access Control Model. ACM Transactions on Information and System Security 4(3), 191–223 (2001)
Ferraiolo, D.F., Sandhu, R., Gavrila, E., Kuhn, D.R., Chandramouli, R.: Proposed NIST Standard for Role-Based Access Control. ACM Transactions on Information and System Security 4(3), 224–274 (2001)
Hengartner, U., Steenkiste, P.: Implementing Access Control to People Location Information. In: proceedings of 9th ACM Symposium on Access Control Models and Technologies, pp. 11–20 (2004)
Ferraiolo, D.F., Barkley, J.F., Kuhn, D.R.: A Role-Based Access Control Model and Reference Implementation Within a Corporate Intranet. ACM Transactions on Information and System Security 2(1), 34–64 (1999)
eXtensible Markup Language, http://www.w3.org/XML/
Author information
Authors and Affiliations
Editor information
Rights and permissions
Copyright information
© 2007 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Chae, Sh., Kim, W. (2007). Semantic Representation of RTBAC: Relationship-Based Access Control Model. In: Chang, K.CC., et al. Advances in Web and Network Technologies, and Information Management. APWeb WAIM 2007 2007. Lecture Notes in Computer Science, vol 4537. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-72909-9_62
Download citation
DOI: https://doi.org/10.1007/978-3-540-72909-9_62
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-72908-2
Online ISBN: 978-3-540-72909-9
eBook Packages: Computer ScienceComputer Science (R0)