Security is a crucial concern for commercial and mission critical applications in Web-based environments. Semantic Web-style context descriptions aim at supporting wide-spread distribution of resources and cooperation of autonomous agents on the Web in a secure way. In this paper, context information associated with Access Control (AC) management policies is defined according to basic operators that can be represented using the Web Ontology Language (OWL). The same primitives are used, in the specification of authorizations, to compose domain scope expressions. Standard inference procedures of Description Logics (DL) can then be used to check the consistency of context information referred to by policy conditions and, more interestingly, to pre-process context information for grounding policy propagation and enabling conflict resolution. This work aims at extending the notion of modality conflict in the evaluation of AC policies to take into account semantic Web-style, ontology-based definitions of the entities involved.
Modality conflicts in semantics-aware access control / E. Damiani, S. De Capitani di Vimercati, C. Fugazza, P. Samarati - In: ICWE '06 : workshop proceedings of the sixth International conference on web engineering : Palo Alto, California, july 10-14, 2006 / [a cura di] Nora Koch, Luis Olsina. - New York : ACM press, 2006. - ISBN 1595934359. - pp. 249-256 (( Intervento presentato al 6. convegno International Conference on Web Engineering (ICWE) tenutosi a Palo Alto, California nel 2006 [10.1145/1145581.1145632].
Modality conflicts in semantics-aware access control
E. DamianiPrimo
;S. De Capitani di VimercatiSecondo
;C. FugazzaPenultimo
;P. SamaratiUltimo
2006
Abstract
Security is a crucial concern for commercial and mission critical applications in Web-based environments. Semantic Web-style context descriptions aim at supporting wide-spread distribution of resources and cooperation of autonomous agents on the Web in a secure way. In this paper, context information associated with Access Control (AC) management policies is defined according to basic operators that can be represented using the Web Ontology Language (OWL). The same primitives are used, in the specification of authorizations, to compose domain scope expressions. Standard inference procedures of Description Logics (DL) can then be used to check the consistency of context information referred to by policy conditions and, more interestingly, to pre-process context information for grounding policy propagation and enabling conflict resolution. This work aims at extending the notion of modality conflict in the evaluation of AC policies to take into account semantic Web-style, ontology-based definitions of the entities involved.
Pubblicazioni consigliate
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
