Skip to main content
SpringerLink
Log in

Ontology Based Hybrid Access Control for Automatic Interoperation

  • Conference paper
Book cover Autonomic and Trusted Computing (ATC 2007)

Part of the book series: Lecture Notes in Computer Science ((LNPSE,volume 4610))

Included in the following conference series:

Abstract

Semantic interoperation and service sharing have been accepted as efficient means to facilitate collaboration among heterogonous system applications. However, extensibility and complexity are still crucial problems in supporting multi-level automatic collaborations across dynamically changed domains. In this paper, we propose the ontology based hybrid access control model. It introduces the concept of Industry Coalition, which defines the common ontology and servers as the portal of an application domain for public. By mapping local authorizations to the common ontology, an enterprise can efficiently tackle the problems of automatic interoperation across heterogonous systems in the Coalition, as well as of the general requests from dynamically changed exterior collaborators not belonging to the Coalition. Several algorithms are also proposed to generate authorization mappings and maintain security constraints consistent. To illustrate our model, an example of property right exchange is given and experiment results are discussed.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Ferraiolo, D., Barkley, J., Kuhn, R.: A Role-Based Access Control and Reference Implementation within a Corporate Intranet. ACM TISSEC 2, 34–64 (1999)

    Article  Google Scholar 

  2. Park, J., Sandhu, R., Ahn, G.: Role-based Access Control on the Web. ACM TISSEC 4, 37–71 (2001)

    Article  Google Scholar 

  3. Tekeda, H., Iwata, K., Takaai, M., Sawada, A., Nishida, T.: An ontology-Based Cooperative Environment for Real World Agents. Int. Conf. of Multi-agent Systems, pp. 353–360 (1996)

    Google Scholar 

  4. Park, J.S.: Towards Secure Collaboration on the Semantic Web. ACM SIGCAS Computers and Society 33, 1–10 (2003)

    Article  Google Scholar 

  5. Bertino, E., Fan, J.P., Ferrari, E., Hacid, M.S., Elmagarmid, A.K., Zhu, X.Q.: A hierarchical access control model for video database systems. ACM TOIS 21, 155–191 (2003)

    Article  Google Scholar 

  6. Pan, C.C., Mitra, P., Liu, P.: Semantic Access Control for Information Interoperation. In: Proc. of SACMAT 2006, Lake Tahoe, California, USA, pp. 237–246 (2006)

    Google Scholar 

  7. Ram, S., et al.: Semantic Conflict Resolution Ontology: An Ontology for Detecting and Resolving Data and Schema-level Semantic Conflicts. IEEE TKDE 16, 189–202 (2004)

    Google Scholar 

  8. Mitra, P., Pan, C.C., Liu, P., Vijayalakshmi, A.: Privacy-preserving semantic interoperation and access control of heterogeneous databases. In: Proc. of ASIACCS, pp. 66–77 (2006)

    Google Scholar 

  9. Yague, M.I., Gallardo, M., Mana, A.: Semantic Access Control Model: A Formal Specification. In: di Vimercati, S.d.C., Syverson, P.F., Gollmann, D. (eds.) ESORICS 2005. LNCS, vol. 3679, pp. 24–43. Springer, Heidelberg (2005)

    Chapter  Google Scholar 

  10. Li, Q., Vijayalakshmi, A.: Concept-level access control for the Semantic Web. In: Proc. of the ACM workshop on XML security, Fairfax, Virginia, pp. 94–103 (2003)

    Google Scholar 

  11. Trastour, D., Preist, C., Coleman, D.: Using Semantic Web technology to Enhance Current Business-to-Business Integration Approaches. In: Proc of EDOC, pp. 222–231 (2003)

    Google Scholar 

  12. van der Vet, P.E., Mars, N.J.I.: Bottom-Up Construction of Ontologies. IEEE TKDE 10, 513–526 (1998)

    Google Scholar 

  13. Sandhu, R.S., Coyne, E.J., Feinstein, H.L., Youman, C.E.: Rose-Based Access Control Model. IEEE Computer 29, 38–47 (1996)

    Google Scholar 

  14. Shafiq, B., Joshi, J.B.D., Bertino, E., Ghafoor, A.: Secure Interoperation in a Multidomain Environment Employing RBAC Policies. IEEE TKDE 17, 1557–1577 (2005)

    Google Scholar 

  15. Sun, Y.Q., Pan, P.: PRES—A Practical Flexible RBAC Workflow System. In: Proc. of 7th International Conference on Electronic Commerce, pp. 653–658 (2005)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. School of Computer Science and Technology, Shandong University, 250100 Jinan, China

    Yuqing Sun, Peng Pan & Bin Shi

  2. Department of Computer Science and Engineering, The Chinese University of Hong Kong, Hong Kong, China

    Ho-fung Leung

Authors
  1. Yuqing Sun
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Peng Pan
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Ho-fung Leung
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Bin Shi
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Bin Xiao Laurence T. Yang Jianhua Ma Christian Muller-Schloer Yu Hua

Rights and permissions

Reprints and permissions

Copyright information

© 2007 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Sun, Y., Pan, P., Leung, Hf., Shi, B. (2007). Ontology Based Hybrid Access Control for Automatic Interoperation. In: Xiao, B., Yang, L.T., Ma, J., Muller-Schloer, C., Hua, Y. (eds) Autonomic and Trusted Computing. ATC 2007. Lecture Notes in Computer Science, vol 4610. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-73547-2_34

Download citation

  • DOI: https://doi.org/10.1007/978-3-540-73547-2_34

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-73546-5

  • Online ISBN: 978-3-540-73547-2

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation