Inter-domain role based access control using ontology

Mouliswaran, S. Chandra; Cherukuri, Aswani Kumar; Chandrasekar, C.

doi:10.1109/icacci.2015.7275915

Cited by 11 publications

(5 citation statements)

References 15 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Ingeneral,fuzzyFCAandfuzzyontologyarethetwocommonknowledgerepresentationformalisms availabletodealwithuncertaintyinknowledgedomain.Oncomparingtherepresentationoffuzzy ontologywithfuzzyFCAintherepresentationofFRBAC (Mouliswaran,Kumar,&Chandrasekar, 2015),thedisadvantagesoffuzzyFCAareasfollows.…”

Section: Discussionmentioning

confidence: 99%

Fuzzy Role Based Access Control Design using Fuzzy Ontology

Subramanian

Cherukuri

2019

International Journal of Information Technology Project Management

View full text Add to dashboard Cite

Fuzzy role-based access control (FRBAC) is essential for risk-based environments in many futuristic applications, even though role-based access control (RBAC) is the efficient and widely used access control model for enterprise applications. In FRBAC, authorization related information is vague. It brings the fuzziness in mapping among the components of FRBAC such as user, role and permission. Holding the fuzziness in FRBAC, it is challenging for the security engineer to verify the constraints and correctness of access control policy. On verifying the constraints and correctness of access control policy, knowledge representation techniques are much useful in practice. In this scenario, representing FRBAC using fuzzy ontology might be the right choice for semantic web application. The main objective of this article is to represent the access permissions of FRBAC using fuzzy ontology and verify whether the constraints of FRBAC are possible to get implemented in it or not.

show abstract

Section: Discussionmentioning

confidence: 99%

Fuzzy Role Based Access Control Design using Fuzzy Ontology

Subramanian

Cherukuri

2019

International Journal of Information Technology Project Management

View full text Add to dashboard Cite

show abstract

“…Standard access control models are widely used in inter-domain authorization, but they face a challenge of adopting them to the inter-domain constraints. Since cross-domain authorization requires to determine the role of the user requesting the remote access, the role mapping concept is proposed via creating a single-goal-role [29], mapping between hierarchical access control structures [19,30], or using the ontology [31,32]. The single-goal-role consists of finding the appropriate role for a local user allowing him to access the remote resources.…”

Section: Inter-domain Authorizationmentioning

confidence: 99%

Access Control Mechanism for Social Internet of Things

Dallel

Ayed

Taher

2023

Preprint

View full text Add to dashboard Cite

The Social Internet of Things (SIoT) is a new paradigm which represents a promising business solution proposed to exploit the large volume of data generated by the IoT devices. Accessing the shared resources and services in SIoT faces one major security challenge among others: access control. An access control mechanism evaluates the access policies and performs consecutive re-delegation operations based on delegation policies. However, the re-delegation cannot be performed when no trust relationships exist between the access requester devices and the permission delegator devices. To overcome this issue, we propose to perform friendship-based re-delegations through a path of trust social relationships. To find this path, we suggest to fetch the social device's profiles by integrating a caching strategy. The evaluation results show that a friendship-based delegation can be applied for any system distinguished by a distributed architecture, large scalability and high dynamicity such as the SIoT.

show abstract

“…Several ontologies [11]- [18] have been proposed that target access control and privacy, in general. Developers can reuse privacy and access control concepts from these ontologies, however they do not focus on consent towards accessing particular data, which is a key requirement in GDPR.…”

Section: Related Workmentioning

confidence: 99%

“…Each concept and property fulfills a set of metadata that includes rdfs:labels and rdfs:comments. We maintain the online accessibility 18 and the permanent URL of the ontology. The ontology web documentation is generated using WIDOCO [31].…”

Section: Best Practices Followed and Recommendations To Triple-store ...mentioning

confidence: 99%

GDPR-inspired IoT Ontology enabling Semantic Interoperability, Federation of Deployments and Privacy-Preserving Applications

Agarwal¹,

Elsaleh²,

Τράγος³

2020

Preprint

View full text Add to dashboard Cite

Testing and experimentation are crucial for promoting innovation and building systems that can evolve to meet high levels of service quality. IoT data that belong to users and from which their personal information can be inferred are frequently shared in the background of IoT systems with third parties for experimentation and building quality services. This data sharing raises privacy concerns especially since in most cases the data are gathered and shared without the user's knowledge or explicit consent or for different purposes than the one for which the data were initially gathered. With the introduction of GDPR, IoT systems and experimentation platforms that federate data from different deployments, testbeds and data providers must be privacy-preserving. The wide adoption of IoT applications in scenarios ranging from smart cities to Industry 4.0 has raised concerns with respect to the privacy of users' data collected using IoT devices. Many experimental smart city applications are also using crowdsourcing data. Inspired by the GDPR requirements, we propose an IoT ontology built using available standards that enhances privacy, enables semantic interoperability between IoT deployments and supports the development of privacypreserving experimental IoT applications. On top, we propose recommendations on how to efficiently use the ontology within IoT testbed and federating platforms. Our ontology is validated for different quality assessment criteria using standard validation tools. We focus on "experimentation" without loss of generality, because it covers scenarios from both research and industry, that are directly linked with innovation.

show abstract

Inter-domain role based access control using ontology

Cited by 11 publications

References 15 publications

Fuzzy Role Based Access Control Design using Fuzzy Ontology

Fuzzy Role Based Access Control Design using Fuzzy Ontology

Access Control Mechanism for Social Internet of Things

GDPR-inspired IoT Ontology enabling Semantic Interoperability, Federation of Deployments and Privacy-Preserving Applications

Contact Info

Product

Resources

About