Context sensitive access control

“…Meta-policies prescribe the relationship between policies: after Officer X has been out of contact for over 30 minutes, any access that was previously possible is now denied; once Professor Y has accessed 10 images, she can access no more of them; when the network capacity increases, Dr Z can access data to his heart's content. 3 Thus, these meta-policies are necessarily written at a higher level of abstraction than policies-and, as such, are intended to be closer to the level at which requirements might be captured or guidelines might be stated. Of course, providing a system with the functionality to adapt access control policies automatically means that the need for assurance that the correct policy is in place necessarily increases: ensuring that certain fundamental properties hold in every potential state, for example, is essential-we would not want our protection mechanism to evolve into a state that provided little protection, for example.…”

“…Our concern in this paper is the construction of access control policies that rely on context to inform decisions. (Arguments as to the potential benefits of context-sensitive access control have been made by, for example, [1], [2], and [3].) Specifically, our concern is what might be termed evolving access controlwhereby access control decisions are made on the basis of state.…”

Conformance Checking of Dynamic Access Control Policies

“…Meta-policies prescribe the relationship between policies: after Officer X has been out of contact for over 30 minutes, any access that was previously possible is now denied; once Professor Y has accessed 10 images, she can access no more of them; when the network capacity increases, Dr Z can access data to his heart's content. 3 Thus, these meta-policies are necessarily written at a higher level of abstraction than policies-and, as such, are intended to be closer to the level at which requirements might be captured or guidelines might be stated. Of course, providing a system with the functionality to adapt access control policies automatically means that the need for assurance that the correct policy is in place necessarily increases: ensuring that certain fundamental properties hold in every potential state, for example, is essential-we would not want our protection mechanism to evolve into a state that provided little protection, for example.…”

“…Our concern in this paper is the construction of access control policies that rely on context to inform decisions. (Arguments as to the potential benefits of context-sensitive access control have been made by, for example, [1], [2], and [3].) Specifically, our concern is what might be termed evolving access controlwhereby access control decisions are made on the basis of state.…”

Conformance Checking of Dynamic Access Control Policies

“…Date and time are obviously considered as a part of the environment. In some cases [7,10], location and speed can be considered as a part of the system infrastructure because sensors are part of the security system's domain, and thus can be easily verified. Our research has proved that there is no project that uses dynamic information for authorization which is not captured inside the domain of the security system, like information from users devices or sensors available inside the context of the user.…”

Context-sensitive authorization for asynchronous communications

“…Many authors have also proposed models for access control policies that include rules about location or other context information [24][25][26][27][28][29][30][31][32][33][34], and both of most prominent languages used for writing digital rights management licences -the Extensible Rights Markup Language ("XrML") [35] and the Open Digital Rights Language [36] -support clauses that constrain the use of a file to a particular location.…”

Location constraints in digital rights management