TY - GEN
T1 - Situation-aware access control for service-oriented autonomous decentralized systems
AU - Yau, Sik-Sang
AU - Yao, Yisheng
AU - Banga, Vageesh
PY - 2005/12/1
Y1 - 2005/12/1
N2 - Service-oriented autonomous decentralized systems (S-ADS) have been presented to address the extreme dynamism in large-scale information systems. In S-ADS, various capabilities are independently constructed and managed by different providers as autonomous services that are distributed over various types of networks, including wireless and wired networks. One of the key challenges in S-ADS is to have an effective access control mechanism that can meet the dynamic and diverse security requirements of various users and providers of an S-ADS system. Current access control mechanisms can hardly meet this challenge due to lack of situation-awareness. In this paper, a situation-aware access control approach is presented, which is middleware-based and integrates situation-awareness capability and Role Based Access Control (RBAC) models to provide a practical solution for access control in S-ADS. The situation-aware RBAC model is designed for specifying dynamic access policies in an S-ADS system. Due to the situation-awareness capability of our approach, flexible and high-grained access policies can be specified and enforced for various providers and users.
AB - Service-oriented autonomous decentralized systems (S-ADS) have been presented to address the extreme dynamism in large-scale information systems. In S-ADS, various capabilities are independently constructed and managed by different providers as autonomous services that are distributed over various types of networks, including wireless and wired networks. One of the key challenges in S-ADS is to have an effective access control mechanism that can meet the dynamic and diverse security requirements of various users and providers of an S-ADS system. Current access control mechanisms can hardly meet this challenge due to lack of situation-awareness. In this paper, a situation-aware access control approach is presented, which is middleware-based and integrates situation-awareness capability and Role Based Access Control (RBAC) models to provide a practical solution for access control in S-ADS. The situation-aware RBAC model is designed for specifying dynamic access policies in an S-ADS system. Due to the situation-awareness capability of our approach, flexible and high-grained access policies can be specified and enforced for various providers and users.
KW - Access control
KW - Middleware-based
KW - Role-based access control
KW - Service-oriented computing
KW - Situation awareness
KW - Smart classroom
UR - http://www.scopus.com/inward/record.url?scp=33744911096&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=33744911096&partnerID=8YFLogxK
U2 - 10.1109/ISADS.2005.1452011
DO - 10.1109/ISADS.2005.1452011
M3 - Conference contribution
AN - SCOPUS:33744911096
SN - 0780389638
SN - 9780780389632
T3 - Proceedings - 2005 International Symposium on Autonomous Decentralized Systems, ISADS 2005
SP - 17
EP - 24
BT - Proceedings - 2005 International Symposium on Autonomous Decentralized Systems, ISADS 2005
T2 - 2005 International Symposium on Autonomous Decentralized Systems, ISADS 2005
Y2 - 4 April 2005 through 8 April 2005
ER -