The Web 2.0, GRID applications and more recently semantic desktop applications are bringing the Web to a situation where more and more data and metadata are shared and made available to large user groups. Things are further complicated by the highly unpredictable and autonomous dynamics of data, users, permissions and access control rules. For this novel scenario, a new access control model, Relation-Based Access Control (RelBAC) is proposed which allows subjects, objects and permissions to be dened independently. The key property which makes this possible is that permissions are modeled as relations between subjects and objects. RelBAC is formalized using the Description Logic ALCQIBO, which allows to perform policy management, e.g., Separation of Duties via automated reasoning.

Relation Based Access Control: Logic and Policies / Zhang, Rui; Artale, Alessandro; Crispo, Bruno; Giunchiglia, Fausto. - ELETTRONICO. - (2010), pp. 1-23.

Relation Based Access Control: Logic and Policies

Zhang, Rui;Crispo, Bruno;Giunchiglia, Fausto
2010-01-01

Abstract

The Web 2.0, GRID applications and more recently semantic desktop applications are bringing the Web to a situation where more and more data and metadata are shared and made available to large user groups. Things are further complicated by the highly unpredictable and autonomous dynamics of data, users, permissions and access control rules. For this novel scenario, a new access control model, Relation-Based Access Control (RelBAC) is proposed which allows subjects, objects and permissions to be dened independently. The key property which makes this possible is that permissions are modeled as relations between subjects and objects. RelBAC is formalized using the Description Logic ALCQIBO, which allows to perform policy management, e.g., Separation of Duties via automated reasoning.
2010
Trento
Università degli Studi di Trento
Relation Based Access Control: Logic and Policies / Zhang, Rui; Artale, Alessandro; Crispo, Bruno; Giunchiglia, Fausto. - ELETTRONICO. - (2010), pp. 1-23.
Zhang, Rui; Artale, Alessandro; Crispo, Bruno; Giunchiglia, Fausto
File in questo prodotto:
File Dimensione Formato  
053.pdf

accesso aperto

Tipologia: Versione editoriale (Publisher’s layout)
Licenza: Tutti i diritti riservati (All rights reserved)
Dimensione 431.26 kB
Formato Adobe PDF
431.26 kB Adobe PDF Visualizza/Apri

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11572/358526
 Attenzione

Attenzione! I dati visualizzati non sono stati sottoposti a validazione da parte dell'ateneo

Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus ND
  • ???jsp.display-item.citation.isi??? ND
social impact