ABSTRACT
Various use cases require flexible and dynamic access control management. This paper proposes security contexts and affinities for handling context-based access control for shared resources in a flexible way. It identifies components that can benefit very much from hypermedia models in terms of flexibility and extensibility. In addition, behavior components being able to interpret specific kinds of structures are suggested. This enables access control models that can be dynamically adapted and extended.
- G. Clemm, J. F. Reschke, E. Sedlar, and E. J. Whitehead. Web Distributed Authoring and Versioning (WebDAV) Access Control Protocol, 2004. http://www.webdav.org/. Google ScholarDigital Library
- D. C. Engelbart. Toward High-Performance Organizations: A Strategic Role for Groupware. In Proceedings of the GroupWare '92 Conference. Morgan Kaufmann Publishers, 1992.Google Scholar
- J. M. Haake, A. Haake, T. Schümmer, M. Bourimi, and B. Landgraf. End-User Controlled Group Formation and Access Rights Management in a Shared Workspace System. In Proceedings of Computer Supported Cooperative Work'04 (CSCW'04), pages 554--563, New York, USA, 2004. ACM Press. Google ScholarDigital Library
- T. Hampel. Access Rights -- The Keys to Cooperative Work/Learning. In U. K. Wiil, editor, Metainformatics. International Symposium 2004 (MIS 2004), volume 3511 of Lecture Notes in Computer Science, pages 14--31, Berlin Heidelberg, Germany, 2005. Springer-Verlag. Google ScholarDigital Library
- P. King, M. Narnard, J. Narnard, and G. Rossi. A Structural Computing Model for Dynamic Service-Based Systems. In D. L. Hicks, editor, Metainformatics. International Symposium 2003 (MIS 2003), volume 3002 of Lecture Notes in Computer Science, pages 100--118, Berlin Heidelberg, Germany, 2004. Springer-Verlag.Google Scholar
- B. W. Lampson. Protection. ACM Operating Systems Rev., 8(1):18--24, 1974. Google ScholarDigital Library
- W. V. Lepthien and K. Anderson. Unifying Structure, Behavior, and Data with Themis Types and Templates. In Proceedings of Hypertext'04 (HT'04), pages 256--265, New York, USA, 2004. ACM Press. Google ScholarDigital Library
- M. Narnard, J. Narnard, and P. King. IUHM, A Hypermedia-Based Model for Integrating Open Services, Data and Metadata. In Proceedings of Hypertext'03 (HT'03), pages 128--137, New York, USA, 2003. ACM Press. Google ScholarDigital Library
- P. J. Nürnberg. Building Metainformatical Bridges. In P. J. Nürnberg, editor, Metainformatics. International Symposium 2002 (MIS 2002), volume 2641 of Lecture Notes in Computer Science, pages 6--8, Berlin Heidelberg, Germany, 2003. Springer-Verlag.Google Scholar
- P. J. Nürnberg, J. J. Leggett, and E. Schneider. As We Should Have Thought. In Proceedings of Hypertext'97 (HT'97), pages 96--101, New York, USA, 1997. ACM Press. Google ScholarDigital Library
- P. J. Nürnberg, J. J. Leggett, E. R. Schneider, and J. Schnase. Hypermedia Operating Systems: A New Paradigm for Computing. In Proceedings of Hypertext'96 (HT'96), pages 194--202, New York, USA, 1996. ACM Press. Google ScholarDigital Library
- P. J. Nürnberg, U. K. Wiil, and D. L. Hicks. A Grand Unified Theory for Structural Computing. In D. L. Hicks, editor, Metainformatics. International Symposium 2003 (MIS 2003), volume 3002 of Lecture Notes in Computer Science, pages 1--16, Berlin Heidelberg, Germany, 2004. Springer-Verlag.Google Scholar
- Object Management Group (OMG). UML 2.0 OCL Specification, OCL 2.0, 2003. http://www.uml.org/.Google Scholar
- Object Management Group (OMG). UML 2.0 Superstructure Specification, 2003. http://www.uml.org/.Google Scholar
- S. Reich and E. Gams. Trailist - Focusing on document activity for assisting navigation. In Proceedings of Hypertext'01 (HT'01), pages 29--30, New York, USA, 2001. ACM Press. Google ScholarDigital Library
- J. Rubart, J. M. Haake, D. A. Tietze, and W. Wang. Organizing Shared Enterprise Workspaces Using Component-based Cooperative Hypermedia. In Proceedings of Hypertext'01 (HT'01), pages 73--82, New York, USA, 2001. ACM Press. Google ScholarDigital Library
- J. Rubart, W. Wang, and J. M. Haake. Arguments for Open Structure Execution Services. In Proceedings of the Open Hypermedia Systems Workshop'02, Informatik Berichte, 295-8/2002, pages 45--51, Hagen, Germany, 2002. FernUniversität Hagen.Google Scholar
- J. Rubart, W. Wang, and J. M. Haake. A Meta-Modeling Environment for Cooperative Knowledge Management. In P. J. Nürnberg, editor, Metainformatics. International Symposium 2002 (MIS 2002), volume 2641 of Lecture Notes in Computer Science, pages 18--28, Berlin Heidelberg, Germany, 2003. Springer-Verlag.Google Scholar
- H. Shen and P. Dewan. Access Control for Collaborative Environments. In Proceedings of Computer Supported Cooperative Work'92 (CSCW'92), pages 51--58, New York, USA, 1992. ACM Press. Google ScholarDigital Library
- K. Tochermann. Personalization in Knowledge Management. In P. J. Nürnberg, editor, Metainformatics. International Symposium 2002 (MIS 2002), volume 2641 of Lecture Notes in Computer Science, pages 29--41, Berlin Heidelberg, Germany, 2003. Springer-Verlag.Google Scholar
- M. Tzagarakis, D. Avramidis, M. Kyriakopoulou, m. c. schraefel, M. Vaitis, and D. Christodoulakis. Structuring primitives in the callimachus component-based open hypermedia system. Journal of Network and Computer Applications, Academic Press, 26(1):139--162, 2003. Google ScholarDigital Library
- W. Wang. Team-and-Role-Based Organizational Context and Access Control for Cooperative Hypermedia Environments. In Proceedings of Hypertext'99 (HT'99), New York, USA, 1999. ACM Press. Google ScholarDigital Library
- J. B. Warmer and A. G. Kleppe. The Object Constraint Language: Precise Modeling with UML. Addison-Wesley, Mass., USA, 1999. Google ScholarDigital Library
- U. K. Wiil, D. L. Hicks, and P. J. Nürnberg. Multiple Open Services: A New Approach to Service Provision in Open Hypermedia Systems. In Proceedings of Hypertext'01 (HT'01), pages 83--92, New York, USA, 2001. ACM Press. Google ScholarDigital Library
Index Terms
- Context-based access control
Recommendations
Context Delegation for Context-Based Access Control
ECML PKDD 2018 WorkshopsAbstractThe capability to delegate access privileges is an essential component of access control policies. We present an ontology-based context delegation approach for context-based access control. Our approach provides a dynamic and adaptive context ...
A generalized context-based access control model for pervasive environments
SPRINGL '09: Proceedings of the 2nd SIGSPATIAL ACM GIS 2009 International Workshop on Security and Privacy in GIS and LBSPervasive Computing Environments enable new opportunities for users to share and to access resources anytime and anywhere in a more natural way, making access control a critical issue. These heterogeneous and dynamic sensor-rich environments ...
Flexible team-based access control using contexts
SACMAT '01: Proceedings of the sixth ACM symposium on Access control models and technologiesWe discuss the integration of contextual information with team-based access control. The TMAC model was formulated by Thomas in [1] to provide access control for collaborative activity best accomplished by teams of users. In TMAC, access control ...
Comments