The Community for Technology Leaders
RSS Icon
Subscribe
Issue No.02 - March/April (2008 vol.12)
pp: 38-45
Maria Luisa Damiani , University of Milan
David W. Bettis , Amazon.com
Elisa Bertino , Purdue University
ABSTRACT
Simplifying the administration of location-based access-control policies requires a mechanism that supports both intuitive and scalable spatial constraint specifications and a flexible enforcement architecture. Policy Mapper is an administrative tool that helps define access control at conceptual and logical levels to carry out constraint specification and enforcement. The tool also provides an Interface Definition Language that couples the two levels. Policy Mapper bridges a critical gap between the expressiveness and enforcement of spatial constraints in location-based access-control policies.
INDEX TERMS
access control, location-based constraints, policy administration, mobile computing
CITATION
Maria Luisa Damiani, David W. Bettis, Elisa Bertino, "Policy Mapper: Administering Location-Based Access-Control Policies", IEEE Internet Computing, vol.12, no. 2, pp. 38-45, March/April 2008, doi:10.1109/MIC.2008.40
REFERENCES
1. M.L. Damiani et al., "GeoRBAC: A Spatially Aware Rbac," ACM Trans. Information and System Security, vol. 10, no. 1, 2007, p. 2.
2. D.F. Ferraiolo et al., "Proposed NIST Standard for Role-Based Access Control," ACM Trans. Information and System Security, vol. 4, no. 3, 2001, pp. 224–274.
3. R. Bhatti et al., "X-GTRBAC: An XML-Based Policy Specification Framework and Architecture for Enterprise-Wide Access Control," ACM Trans. Information and System Security, vol. 8, no. 2, 2005, pp. 187–227.
4. F. Cuppens and A. Miège, "Modellin Contexts in the Or-BAC Model," Proc. 19th Ann. Computer Security Applications Conf. (ACSAC 03), IEEE CS Press, 2003, pp. 416–427.
5. S.M. Chandran and J.B.D. Joshi, "LoT RBAC: A Location and Time-Based RBAC Model," Proc. 6th Int'l Conf. Web Information Systems Eng. (WISE 05), Springer-Verlag, 2005, pp. 361–375.
6. F. Hansen and V. Oleshchuk, "SRBAC: A Spatial Role-Based Access Control Model for Mobile Systems," Proc. 7th Nordic Workshop on Secure IT Systems (NORDSEC 03), 2003, pp. 129–141.
7. Geography Markup Language (GML) Implementation Specification, tech. report OGC 02-023r4, OpenGIS, 2003.
41 ms
(Ver 2.0)

Marketing Automation Platform Marketing Automation Tool