a formal model for access control with supporting spatial context
文献类型:期刊论文
| 作者 | Zhang Hong ; He Yeping ; Shi ZhiGuo |
| 刊名 | Science in China Series F-information Sciences
 |
| 出版日期 | 2007 |
| 卷号 | 50期号:3页码:419-439 |
| 关键词 | information security RBAC spatial context lattice MLS constraints formal model |
| 通讯作者 | Zhang, H (通讯作者), Chinese Acad Sci, Inst Software, Beijing 100080, Peoples R China |
| 收录类别 | SCI,SPRINGER |
| WOS记录号 | WOS:000247829800013 |
| 公开日期 | 2010-08-23 |
| 附注 | There is an emerging recognition of the importance of utilizing contextual information in authorization decisions. Controlling access to resources in the field of wireless and mobile networking require the definition of a formal model for access control with supporting spatial context. However, traditional RBAC model does not specify these spatial requirements. In this paper, we extend the existing RBAC model and propose the SC-RBAC model that utilizes spatial and location-based information in security policy definitions. The concept of spatial role is presented, and the role is assigned a logical location domain to specify the spatial boundary. Roles are activated based on the current physical position of the user which obtained from a specific mobile terminal. We then extend SC-RBAC to deal with hierarchies, modeling permission, user and activation inheritance, and prove that the hierarchical spatial roles are capable of constructing a lattice which is a means for articulate multi-level security policy and more suitable to control the information flow security for safety-critical location-aware information systems. Next, constrained SC-RBAC allows express various spatial separations of duty constraints, location-based cardinality and temporal constraints for specify fine-grained spatial semantics that are typical in location-aware systems. Finally, we introduce 9 invariants for the constrained SC-RBAC and its basic security theorem is proven. The constrained SC-RBAC provides the foundation for applications in need of the constrained spatial context aware access control. |
| 源URL | [http://124.16.136.157/handle/311060/3786]  |
| 专题 | 软件研究所_基础软件国家工程研究中心_期刊论文 |
| 推荐引用方式 GB/T 7714 | Zhang Hong,He Yeping,Shi ZhiGuo. a formal model for access control with supporting spatial context[J]. Science in China Series F-information Sciences,2007,50(3):419-439. |
| APA | Zhang Hong,He Yeping,&Shi ZhiGuo.(2007).a formal model for access control with supporting spatial context.Science in China Series F-information Sciences,50(3),419-439. |
| MLA | Zhang Hong,et al."a formal model for access control with supporting spatial context".Science in China Series F-information Sciences 50.3(2007):419-439. |
入库方式: OAI收割
来源:软件研究所
浏览0
下载0
收藏0
其他版本
除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。