Title :
A component-based architecture for secure data publication
Author :
Bonatti, Piero A. ; Damiani, Ernesto ; De Capitani di Vemercati, S. ; Samarati, Pierangela
Author_Institution :
Dipt.i Tecnologie dell´´Informazione, Milan Univ., Italy
Abstract :
We present an approach for controlling access to data publishers in the framework of Web-based information services. The paper presents a model for enforcing access control regulations, an XML core schema and namespace for expressing such regulations, and illustrates the architecture of the Access Control Unit (ACU), an autonomous software component based on the proposed model. Besides "standard" authorizations, the ACU supports authorizations based on user profiles and dynamic conditions whose outcome is determined by user actions such as the acceptance of a written agreement and/or payment.
Keywords :
Internet; authorisation; Access Control Unit; Web-based information services; World Wide Web; XML core schema; XML namespace; access control regulations; authorizations; banking; component-based architecture; dynamic conditions; finance; payment; secure data publication; user profiles; written agreement; Access control; Authorization; Banking; Government; Information analysis; Mediation; Protection; Scalability; Web sites; XML;
Conference_Titel :
Computer Security Applications Conference, 2001. ACSAC 2001. Proceedings 17th Annual
Print_ISBN :
0-7695-1405-7
DOI :
10.1109/ACSAC.2001.991546