An ontological framework for situation-aware access control of software services
作者:
Highlights:
• The definition and identification of the purposes of users׳ access requests for software services in terms of context information.
• A situation model for defining, identifying and reasoning about purpose-oriented situations in terms of context information and access purpose.
• A policy model for specifying and enforcing situation-aware access control policies.
• An ontology-based framework and prototype implementation to model and identify the purposes, situations and policies for access control.
• The case studies demonstrate the general applicability of our framework and the experiment results quantify system performance.
摘要
Highlights•The definition and identification of the purposes of users׳ access requests for software services in terms of context information.•A situation model for defining, identifying and reasoning about purpose-oriented situations in terms of context information and access purpose.•A policy model for specifying and enforcing situation-aware access control policies.•An ontology-based framework and prototype implementation to model and identify the purposes, situations and policies for access control.•The case studies demonstrate the general applicability of our framework and the experiment results quantify system performance.
论文关键词:Situation-awareness,Context information,Purpose,Situation model,Access control policy,Policy model,Situation-aware access control
论文评审过程:Available online 30 April 2015, Version of Record 26 June 2015.
论文官网地址:https://doi.org/10.1016/j.is.2015.03.011
