Towards a Fine-Grained Access Control Model and Mechanisms for Semantic Databases

Franzoni, S.; Mazzoleni, P.; Bertino, E.; Valtolina, S.

doi:10.1109/ICWS.2007.176

A growing number of domains are adopting semantic models as a centralized gateway to multiple data sources, or directly for modeling and managing relevant information. In such contexts, granting access to the semantic model and its data only to the authorized users is a crucial requirement. In this paper, we present a fine-grained access control model specifically tailored to regulate access to semantic models. One of the relevant features of the model is the granularity of the resources that can be protected. Access control can be enforced at the level of both the model’s entities and the entities’ instances. Authorization decisions are determined by evaluating access control policies. An implementation of the proposed model adopting the XACML standard and the SeRQL query language is also discussed.

Towards a Fine-Grained Access Control Model and Mechanisms for Semantic Databases / S. Franzoni, P. Mazzoleni, E. Bertino, S. Valtolina - In: 2007 IEEE International Conference on Web Services (ICWS 2007) : proceedings : Salt Lake City, Utah, USA, July 9-13, 2007 / [a cura di] L.J. Zhang, K. P. Birman, J. Zhang. - Los Alamitos, Calif : IEEE Computer Society, 2007. - ISBN 978-0-7695-2924-0. - pp. 993-1000 (( convegno IEEE International Conference on Web Services ICWS 2007 tenutosi a Salt Lake City, Utah, USA nel 2007.

Towards a Fine-Grained Access Control Model and Mechanisms for Semantic Databases

S. Franzoni^Primo;P. Mazzoleni^Secondo;E. Bertino^Penultimo;S. Valtolina^Ultimo

2007

Abstract

A growing number of domains are adopting semantic models as a centralized gateway to multiple data sources, or directly for modeling and managing relevant information. In such contexts, granting access to the semantic model and its data only to the authorized users is a crucial requirement. In this paper, we present a fine-grained access control model specifically tailored to regulate access to semantic models. One of the relevant features of the model is the granularity of the resources that can be protected. Access control can be enforced at the level of both the model’s entities and the entities’ instances. Authorization decisions are determined by evaluating access control policies. An implementation of the proposed model adopting the XACML standard and the SeRQL query language is also discussed.

Scheda breve

Scheda completa

Scheda completa (DC)

	Settori scientifico-disciplinari del contributo
	
			Settore INF/01 - Informatica
		
	Data di pubblicazione
	
			2007
		
	DOI
	
			https://dx.doi.org/10.1109/ICWS.2007.176
		
	Tipologia
	
			Book Part (author)
		
	Appare nelle tipologie:
	
			03 - Contributo in volume

File in questo prodotto:

Non ci sono file associati a questo prodotto.

Pubblicazioni consigliate

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/2434/34897

Citazioni

ND

14

8

IRIS Institutional Research Information System - AIR Archivio Istituzionale della Ricerca