Computer Security Applications Conference, Annual (2001)
New Orleans, Lousiana
Dec. 10, 2001 to Dec. 14, 2001
P. Bonatti , Universit? degli Studi di Milano
E. Damiani , Universit? degli Studi di Milano
S. de Capitani , Universit? degli Studi di Brescia
P. Samarati , Universit? degli Studi di Milano
We present an approach for controlling access to data publishers in the framework of Web-based information services. The paper presents a model for enforcing access control regulations, an XML core schema and namespace for expressing such regulations, and illustrates the architecture of Access Control Unit (ACU), an autonomous software component based on the proposed model. Besides "standard" authorizations, the ACU supports authorizations based on user profiles and dynamic conditions whose outcome is determined by user actions such as the acceptance of a written agreement and/or payment.
P. Samarati, P. Bonatti, E. Damiani and S. de Capitani, "A Component-Based Architecture for Secure Data Publication," Computer Security Applications Conference, Annual(ACSAC), New Orleans, Lousiana, 2001, pp. 0309.