DocumentCode
2416090
Title
Modelling contexts in the Or-BAC model
Author
Cuppens, Frédéric ; Miège, Alexandre
Author_Institution
ENST Bretagne, Paris, France
fYear
2003
fDate
8-12 Dec. 2003
Firstpage
416
Lastpage
425
Abstract
As computer infrastructures become more complex, security models must provide means to handle more flexible and dynamic requirements. In the organization based access control (Or-BAC) model, it is possible to express such requirements using the notion of context. In Or-BAC, each privilege (permission or obligation or prohibition) only applies in a given context. A context is viewed as an extra condition that must be satisfied to activate a given privilege. We present a taxonomy of different types of context and investigate the data the information system must manage in order to deal with these different contexts. We then explain how to model them in the Or-BAC model.
Keywords
authorisation; management information systems; computer infrastructures; organization based access control; security models; Access control; Application software; Computer architecture; Computer security; Context modeling; Information management; Management information systems; Permission; Resource management; Taxonomy;
fLanguage
English
Publisher
ieee
Conference_Titel
Computer Security Applications Conference, 2003. Proceedings. 19th Annual
Print_ISBN
0-7695-2041-3
Type
conf
DOI
10.1109/CSAC.2003.1254346
Filename
1254346
Link To Document