Design and Implementation of a Context-Based Security Model

Tadashi Iijima, Satoshi Kido

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

This paper proposes a context-based security model and describes one of the design and implementation of enforcement mechanism of it. In this access control model, a kind of object-oriented petri-net with nets-within-nets semantics is adopted as a context representation. This approach is, particularly, expected to be suitable for dynamic access control within inter-organizational business processes. The overall architecture of the access control model is designed by extending XACML standard architecture. And a Scala-based internal Domain Specific Language is designed to specify security policies.

Original languageEnglish
Title of host publicationCommunications in Computer and Information Science
PublisherSpringer Verlag
Pages356-370
Number of pages15
Volume466 CCIS
ISBN (Print)9783319118536
DOIs
Publication statusPublished - 2014
Event11th Joint Conference on Knowledge-Based Software Engineering, JCKBSE 2014 - Volgograd, Russian Federation
Duration: 2014 Sep 172014 Sep 20

Publication series

NameCommunications in Computer and Information Science
Volume466 CCIS
ISSN (Print)18650929

Other

Other11th Joint Conference on Knowledge-Based Software Engineering, JCKBSE 2014
CountryRussian Federation
CityVolgograd
Period14/9/1714/9/20

Fingerprint

Access control
Petri nets
Semantics
Industry

Keywords

  • Access Control Model
  • Context Sensibility
  • Domain Specific Language
  • XACML

ASJC Scopus subject areas

  • Computer Science(all)

Cite this

Iijima, T., & Kido, S. (2014). Design and Implementation of a Context-Based Security Model. In Communications in Computer and Information Science (Vol. 466 CCIS, pp. 356-370). (Communications in Computer and Information Science; Vol. 466 CCIS). Springer Verlag. https://doi.org/10.1007/978-3-319-11854-3_30

Design and Implementation of a Context-Based Security Model. / Iijima, Tadashi; Kido, Satoshi.

Communications in Computer and Information Science. Vol. 466 CCIS Springer Verlag, 2014. p. 356-370 (Communications in Computer and Information Science; Vol. 466 CCIS).

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Iijima, T & Kido, S 2014, Design and Implementation of a Context-Based Security Model. in Communications in Computer and Information Science. vol. 466 CCIS, Communications in Computer and Information Science, vol. 466 CCIS, Springer Verlag, pp. 356-370, 11th Joint Conference on Knowledge-Based Software Engineering, JCKBSE 2014, Volgograd, Russian Federation, 14/9/17. https://doi.org/10.1007/978-3-319-11854-3_30
Iijima T, Kido S. Design and Implementation of a Context-Based Security Model. In Communications in Computer and Information Science. Vol. 466 CCIS. Springer Verlag. 2014. p. 356-370. (Communications in Computer and Information Science). https://doi.org/10.1007/978-3-319-11854-3_30
Iijima, Tadashi ; Kido, Satoshi. / Design and Implementation of a Context-Based Security Model. Communications in Computer and Information Science. Vol. 466 CCIS Springer Verlag, 2014. pp. 356-370 (Communications in Computer and Information Science).
@inproceedings{06adaf0b8e7d452f862e891d7661124f,
title = "Design and Implementation of a Context-Based Security Model",
abstract = "This paper proposes a context-based security model and describes one of the design and implementation of enforcement mechanism of it. In this access control model, a kind of object-oriented petri-net with nets-within-nets semantics is adopted as a context representation. This approach is, particularly, expected to be suitable for dynamic access control within inter-organizational business processes. The overall architecture of the access control model is designed by extending XACML standard architecture. And a Scala-based internal Domain Specific Language is designed to specify security policies.",
keywords = "Access Control Model, Context Sensibility, Domain Specific Language, XACML",
author = "Tadashi Iijima and Satoshi Kido",
year = "2014",
doi = "10.1007/978-3-319-11854-3_30",
language = "English",
isbn = "9783319118536",
volume = "466 CCIS",
series = "Communications in Computer and Information Science",
publisher = "Springer Verlag",
pages = "356--370",
booktitle = "Communications in Computer and Information Science",

}

TY - GEN

T1 - Design and Implementation of a Context-Based Security Model

AU - Iijima, Tadashi

AU - Kido, Satoshi

PY - 2014

Y1 - 2014

N2 - This paper proposes a context-based security model and describes one of the design and implementation of enforcement mechanism of it. In this access control model, a kind of object-oriented petri-net with nets-within-nets semantics is adopted as a context representation. This approach is, particularly, expected to be suitable for dynamic access control within inter-organizational business processes. The overall architecture of the access control model is designed by extending XACML standard architecture. And a Scala-based internal Domain Specific Language is designed to specify security policies.

AB - This paper proposes a context-based security model and describes one of the design and implementation of enforcement mechanism of it. In this access control model, a kind of object-oriented petri-net with nets-within-nets semantics is adopted as a context representation. This approach is, particularly, expected to be suitable for dynamic access control within inter-organizational business processes. The overall architecture of the access control model is designed by extending XACML standard architecture. And a Scala-based internal Domain Specific Language is designed to specify security policies.

KW - Access Control Model

KW - Context Sensibility

KW - Domain Specific Language

KW - XACML

UR - http://www.scopus.com/inward/record.url?scp=84907365898&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84907365898&partnerID=8YFLogxK

U2 - 10.1007/978-3-319-11854-3_30

DO - 10.1007/978-3-319-11854-3_30

M3 - Conference contribution

AN - SCOPUS:84907365898

SN - 9783319118536

VL - 466 CCIS

T3 - Communications in Computer and Information Science

SP - 356

EP - 370

BT - Communications in Computer and Information Science

PB - Springer Verlag

ER -