ROWLBAC - Representing Role Based Access Control in OWL
| dc.contributor.author | Finin, Tim | |
| dc.contributor.author | Joshi, Anupam | |
| dc.contributor.author | Kagal, Lalana | |
| dc.contributor.author | Niu, Jianwei | |
| dc.contributor.author | Sandhu, Ravi | |
| dc.contributor.author | Winsborough, William H. | |
| dc.contributor.author | Thuraisingham, Bhavani | |
| dc.date.accessioned | 2018-11-26T16:04:55Z | |
| dc.date.available | 2018-11-26T16:04:55Z | |
| dc.date.issued | 2008-06-11 | |
| dc.description | Proceedings of the 13th Symposium on Access control Models and Technologies | en_US |
| dc.description.abstract | There have been two parallel themes in access control research in recent years. On the one hand there are efforts to develop new access control models to meet the policy needs of real world application domains. In parallel, and almost separately, researchers have developed policy languages for access control. This paper is motivated by the consideration that these two parallel efforts need to develop synergy. A policy language in the abstract without ties to a model gives the designer little guidance. Conversely a model may not have the machinery to express all the policy details of a given system or may deliberately leave important aspects unspecified. Our vision for the future is a world where advanced access control concepts are embodied in models that are supported by policy languages in a natural intuitive manner, while allowing for details beyond the models to be further specified in the policy language. This paper studies the relationship between the Web Ontology Language (OWL) and the Role Based Access Control (RBAC) model. Although OWL is a web ontology language and not specifically designed for expressing authorization policies, it has been used successfully for this purpose in previous work. OWL is a leading specification language for the Semantic Web, making it a natural vehicle for providing access control in that context. In this paper we show two different ways to support the NIST Standard RBAC model in OWL and then discuss how the OWL constructions can be extended to model attribute-based RBAC or more generally attribute-based access control. We further examine and assess OWL's suitability for two other access control problems: supporting attribute based access control and performing security analysis in a trust-management framework. | en_US |
| dc.description.sponsorship | This research was partially supported by grants CNS-0716627, CNS-0716424 and CCF-0524010 from the National Science Foundation, the NSF Cybertrust 05-518 program, and AFRL grant FA8750-07-2-0031. | en_US |
| dc.description.uri | https://dl.acm.org/citation.cfm?id=1377849 | en_US |
| dc.format.extent | 10 pages | en_US |
| dc.genre | conference papers and proceedings preprints | en_US |
| dc.identifier | doi:10.13016/M20V89N0J | |
| dc.identifier.citation | Tim Finin, Anupam Joshi, Lalana Kagal, Jianwei Niu, Ravi Sandhu, William H Winsborough, and Bhavani Thuraisingham, ROWLBAC - Representing Role Based Access Control in OWL, Proceedings of the 13th Symposium on Access control Models and Technologies, 2008 , DOI: 10.1145/1377836.1377849 | en_US |
| dc.identifier.uri | 10.1145/1377836.1377849 | |
| dc.identifier.uri | http://hdl.handle.net/11603/12085 | |
| dc.language.iso | en_US | en_US |
| dc.publisher | ACM | en_US |
| dc.relation.isAvailableAt | The University of Maryland, Baltimore County (UMBC) | |
| dc.relation.ispartof | UMBC Computer Science and Electrical Engineering Department Collection | |
| dc.relation.ispartof | UMBC Faculty Collection | |
| dc.rights | This item is likely protected under Title 17 of the U.S. Copyright Law. Unless on a Creative Commons license, for uses protected by Copyright Law, contact the copyright holder or the author. | |
| dc.subject | Access Control Model | en_US |
| dc.subject | Web Ontology Language (OWL) | en_US |
| dc.subject | Role Based Access Control (RBAC) model | en_US |
| dc.subject | Ontology | en_US |
| dc.subject | Semantic Web | en_US |
| dc.subject | UMBC Ebiquity Research Group | en_US |
| dc.title | ROWLBAC - Representing Role Based Access Control in OWL | en_US |
| dc.type | Text | en_US |