The Community for Technology Leaders
Computer Security Applications Conference, Annual (2001)
New Orleans, Lousiana
Dec. 10, 2001 to Dec. 14, 2001
ISBN: 0-7695-1405-7
pp: 0309
P. Bonatti , Universit? degli Studi di Milano
E. Damiani , Universit? degli Studi di Milano
S. de Capitani , Universit? degli Studi di Brescia
P. Samarati , Universit? degli Studi di Milano
ABSTRACT
We present an approach for controlling access to data publishers in the framework of Web-based information services. The paper presents a model for enforcing access control regulations, an XML core schema and namespace for expressing such regulations, and illustrates the architecture of Access Control Unit (ACU), an autonomous software component based on the proposed model. Besides "standard" authorizations, the ACU supports authorizations based on user profiles and dynamic conditions whose outcome is determined by user actions such as the acceptance of a written agreement and/or payment.
INDEX TERMS
CITATION

P. Samarati, P. Bonatti, E. Damiani and S. de Capitani, "A Component-Based Architecture for Secure Data Publication," Computer Security Applications Conference, Annual(ACSAC), New Orleans, Lousiana, 2001, pp. 0309.
doi:10.1109/ACSAC.2001.991546
93 ms
(Ver 3.3 (11022016))