IRIS

Relation-Based Access Control (RelBAC) is an access control model for the Web scenarios, which represents permissions as relations between users and objects. It allows to express policies using cardinality and quantiers and to specify separation of duties in the basic model rather than as an additional constraint. This paper shows that by exploiting the formalization of RelBAC model in Description Logics (DL), sophisticated access control policies can be directly encoded as DL formulas. This facilitates the administration with design-time reasoning on hierarchies, propagations, separation of duties, etc. and helps with run-time reasoning to make access control decisions. All these reasonings can be automated and performed through state of the art, o-the-shelf DL reasoners.

Design-time and Run-time Reasoning with RelBAC / Zhang, Rui. - ELETTRONICO. - (2009), pp. 1-11.

Design-time and Run-time Reasoning with RelBAC

Zhang, Rui
2009-01-01

Abstract

Relation-Based Access Control (RelBAC) is an access control model for the Web scenarios, which represents permissions as relations between users and objects. It allows to express policies using cardinality and quantiers and to specify separation of duties in the basic model rather than as an additional constraint. This paper shows that by exploiting the formalization of RelBAC model in Description Logics (DL), sophisticated access control policies can be directly encoded as DL formulas. This facilitates the administration with design-time reasoning on hierarchies, propagations, separation of duties, etc. and helps with run-time reasoning to make access control decisions. All these reasonings can be automated and performed through state of the art, o-the-shelf DL reasoners.
2009
Trento
University of Trento - Dipartimento di Ingegneria e Scienza dell'Informazione
Design-time and Run-time Reasoning with RelBAC / Zhang, Rui. - ELETTRONICO. - (2009), pp. 1-11.
Zhang, Rui
File in questo prodotto:
File Dimensione Formato  
058.pdf

accesso aperto

Tipologia: Versione editoriale (Publisher’s layout)
Licenza: Tutti i diritti riservati (All rights reserved)
Dimensione 289.09 kB
Formato Adobe PDF
Visualizza/Apri
289.09 kB Adobe PDF Visualizza/Apri

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11572/358659
 Attenzione

Attenzione! I dati visualizzati non sono stati sottoposti a validazione da parte dell'ateneo

Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus ND
  • ???jsp.display-item.citation.isi??? ND
social impact