Description Logic Modeling of Temporal Attribute-Based Access Control

Author

Jin, Peng ; Fang-chun, Yang

Author_Institution

State Key Lab. of Networking & Switching Technol., Beijing Univ. of Posts & Telecommun., China

fYear

2006

fDate

10-11 Oct. 2006

Firstpage

414

Lastpage

418

Abstract

In large-scale open systems like Internet, attribute based access control is more appropriate than some other access control mechanisms. A fragment of description logic can be used to represent and reason about policies of attribute-based access control, because with logic descriptions, policies have a clear syntax and semantics. Further more, with the description logic modeling, ABAC policies and subject attributes assertions are easy to be integrated with semantic Web language which is designed to facilitate the machine interpretability and interoperability in distributed environment. The description logic representation is flexible to hold broad scope of information about users and contexts. The temporal properties of access control are also specified in our model.

Keywords

authorisation; semantic Web; temporal logic; ABAC policies; Internet; description logic modeling; distributed environment; large-scale open systems; logic descriptions; machine interoperability; machine interpretability; semantic Web language; subject attributes assertions; temporal attribute-based access control; Access control; Authorization; Information security; Laboratories; Large-scale systems; Logic; Ontologies; Open systems; Permission; Semantic Web; Access Control; Description logic; Security;

fLanguage

English

Publisher

ieee

Conference_Titel

Communications and Electronics, 2006. ICCE '06. First International Conference on

Conference_Location

Hanoi

Print_ISBN

1-4244-0568-8

Electronic_ISBN

1-4244-0569-6

Type

conf

DOI

10.1109/CCE.2006.350888

Filename

4156539