Coordinated access control with temporal and spatial constraints on mobile execution in coalition environments

Fu, Song; Xu, Cheng‐Zhong

doi:10.1016/j.future.2006.12.002

Cited by 7 publications

(3 citation statements)

References 39 publications

(27 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Some control models are put forward, such as Access Control Lists (ACLs) [3], Access Control Matrixes (ACM) [4], Discretionary Access Control (DAC) model [3], Role-Based Access Control (RBAC) model [5], Task-Based Access Control (TBAC) model [6], Task-Role-Based Access Control (TRBAC) model [4]. Although these models have been widely discussed and applied in various fields [7][8][9][10], detailed discussion is needed in order to provide an effective access control mechanism for manufacturing process in networked manufacturing environment.…”

Section: Introductionmentioning

confidence: 99%

Access Control for Manufacturing Process in Networked Manufacturing Environment

Zhou¹,

Lv²,

Wang³

et al. 2009

JSSM

View full text Add to dashboard Cite

show abstract

Section: Introductionmentioning

confidence: 99%

Access Control for Manufacturing Process in Networked Manufacturing Environment

Zhou¹,

Lv²,

Wang³

et al. 2009

JSSM

View full text Add to dashboard Cite

show abstract

“…The GEO-RBAC model allows a user to activate a role from a particular location, and the role and its permissions are predefined for that location. Other models considering both location and time constraints have been proposed, see for example [12], [11], [22], [9].…”

Section: Introductionmentioning

confidence: 99%

Time and Location Based Services with Access Control

Bertolissi

Fernández

2008

2008 New Technologies, Mobility and Security

View full text Add to dashboard Cite

Abstract-We propose an access control model that extends RBAC (Role-Based Access Control) to take time and location into account, and use term rewriting systems to specify access control policies in this model. We discuss implementation techniques for rewrite-based policy specifications, and the integration of these policies in web applications. The declarative nature of the model facilitates the analysis of policies and the evaluation of access requests: we present two case-studies. I. INTRODUCTIONThe recent growth of digital communication has increased the demand of security for protecting resources and preserving the integrity and confidentiality of data. Thus, considerable interest has been centred on the area of access control models in recent years. Access control is concerned with deciding which actions a subject can execute on the objects of a given system. One of the most popular choices, for use with centralised systems, is the Role-Based Access Control (RBAC) model [19]. In RBAC, users are assigned to roles by a security administrator; roles usually map to job titles in an organisation, and as such, this model is well-suited for relatively static environments.High mobility of users and services in the emerging mobile applications entails the need for access control models that take the location of the user and the time of the request into account in order to decide whether to grant or deny an access request. Several extensions to RBAC have been proposed to incorporate spatio-temporal information in the model. One of the first time-based RBAC models was proposed in [5], and later generalised in the GTRBAC model [17]. In these systems, the roles are enabled by time constraints. An example of location-based model is introduced in [13]. The GEO-RBAC model allows a user to activate a role from a particular location, and the role and its permissions are predefined for that location. Other models considering both location and time constraints have been proposed, see for example [12], [11], [22], [9].In this paper we describe a location-and time-based RBAC model, TLRBAC, that we specify using term rewriting. Term

show abstract

“…Such problems have been nevertheless widely acknowledged and extensively studied [57,[70][71][72]. Another line of the future work is therefore to incorporate proper security mechanisms into the execution model of m-JGRIM, and also to investigate how these mechanisms can be integrated with existing security standards for the Grid such as GSI † † and eventually approaches especially designed to support secure code mobility in Grid settings, for which concrete advances already exist [73,74].…”

mentioning

confidence: 99%

m‐JGRIM: a novel middleware for Gridifying Java applications into mobile Grid services

2010

View full text Add to dashboard Cite

The benefits of Grids for building massively distributed applications have been broadly acknowledged. However, the high complexity of developing Grid applications compromises the widespread adoption of the paradigm. In a previous paper (Future Gener. Comput. Syst. 2008; 24(2):99-118), we have described JGRIM, a method for easily 'gridifying' Java applications, based on non-invasively injecting Grid functionality into ordinary code through Dependency Injection (DI). DI is similar to the Inversion of Control notion of object-oriented frameworks and allows external services providing certain functionality to be injected into application components that require these services without affecting the components' implementation. In this paper, we briefly revisit JGRIM and present m-JGRIM, a novel Java middleware that materializes JGRIM concepts by transforming ordinary applications into entities called Mobile Grid Services, i.e. gridified applications with mobile capabilities that live within a Grid. We also provide an evaluation of the performance of m-JGRIM. Grid practitioners should find this paper useful in having an assessment of the practical benefits and costs of gridifying applications with the middleware, and a down-to-earth description of JGRIM, whose advantages for Grid-enabling applications from a software engineering perspective have been already evaluated in (Future Gener. Comput. Syst. 2008; 24(2):99-118).

show abstract

Coordinated access control with temporal and spatial constraints on mobile execution in coalition environments

Cited by 7 publications

References 39 publications

Access Control for Manufacturing Process in Networked Manufacturing Environment

Access Control for Manufacturing Process in Networked Manufacturing Environment

Time and Location Based Services with Access Control

m‐JGRIM: a novel middleware for Gridifying Java applications into mobile Grid services

Contact Info

Product

Resources

About