Skip to main content
SpringerLink
Log in

STARBAC: Spatiotemporal Role Based Access Control

  • Conference paper
On the Move to Meaningful Internet Systems 2007: CoopIS, DOA, ODBASE, GADA, and IS (OTM 2007)

Part of the book series: Lecture Notes in Computer Science ((LNISA,volume 4804))

Abstract

Role Based Access Control (RBAC) has emerged as an important access control paradigm in computer security. However, the access decisions that can be taken in a system implementing RBAC do not include many relevant factors like user location, system location, system time, etc. We propose a spatiotemporal RBAC Model (STARBAC) which reasons in spatial and temporal domain in tandem. STARBAC control command enables or disables role based on spatiotemporal conditions. The new model is able to specify a number of different types of important access requirements not expressible in existing variations of RBAC model like GEO-RBAC and TRBAC. The specification language we present here is powerful enough to allow logical connectives like AND (∧) and OR (∨) over spatiotemporal conditions.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 84.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 109.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Sandhu, R., Coyne, E.J., Feinstein, H.L., Youman, C.E.: Rolebased Access Control Models. IEEE Computer 29(2), 38–47 (1996)

    Google Scholar 

  2. Giuri, L.: Role -Based Access Control: A Natural Approach. In: RBAC. Proceedings of ACM Workshop on Role Based Access Control, pp. 33–37 (December 1996)

    Google Scholar 

  3. Covington, M.J., Moyer, M.J., Ahamad, M.: Generalized Role-based Access Control for Securing Future Applications. In: NISSC. Proceedings of National Information Systems Security Conference (October 2000)

    Google Scholar 

  4. Ferraiolo, D.F., Sandhu, R., Gavrila, S., Kuhn, D.R., Chandramouli, R.: Proposed NIST Standard for Role-based Access Control. ACM Transactions on Information and System Security (TISSEC) 4(3), 224–274 (2001)

    Article  Google Scholar 

  5. Bertino, E., Bonatti, P.A., Ferrari, E.: TRBAC: A Temporal Role-Based Access Control Model. ACM Transactions on Information and System Security (TISSEC) 4(3), 191–223 (2001)

    Article  Google Scholar 

  6. Giuri, L., Iglio, P.: Role Templates for Content-based Access Control. In: RBAC. Proceedings of ACM Workshop on Role Based Access Control, pp. 153–159 (November 1997)

    Google Scholar 

  7. Gal, A., Atluri, V.: An Authorization Model for Temporal Data. In: CCS. Proceedings of ACM Conference on Computer and Communication Security, pp. 144–153 (2000)

    Google Scholar 

  8. Atluri, V., Chun, S.A.: A Geotemporal Role-based Authorisation System. International Journal of Information and Computer Security 1(1-2), 143–168 (2007)

    Article  Google Scholar 

  9. Bertino, E., Bettini, C., Ferrari, E., Samarati, P.: An Access Control Model Supporting Periodicity Constraints and Temporal Reasoning. ACM Transactions on Database Systems 23(3), 231–285 (1998)

    Article  Google Scholar 

  10. Covington, M., Long, W., Srinivasan, S., Dey, A.K., Ahamad, M., Abowd, G.D.: Securing Context-aware Applications using Environment Roles. In: SACMAT. Proceedings of ACM Symposium on Access Control Models and Technologies, pp. 10–20 (2001)

    Google Scholar 

  11. Zhang, G., Parashar, M.: Context-Aware Dynamic Access Control for Pervasive Applications. In: CNDS. Proceedings of Communication Networks and Distributed Systems Modeling and Simulation Conference (2004)

    Google Scholar 

  12. Joshi, J.B.D., Bertino, E., Latif, U., Ghafoor, A.: Generalized Temporal Role based Access Control Model (GTRBAC)- Specification and modeling. IEEE Transactions on Knowledge and Data Engineering 17(1), 4–23 (2005)

    Article  Google Scholar 

  13. Hansen, F., Oleshchuk, V.: Spatial Role-Based Access Control Model for Wireless Networks. In: Proceedings of IEEE Vehicular Technology Conference, pp. 2093–2097 (2003)

    Google Scholar 

  14. Bertino, E., Catania, B., Damiani, M.L., Perlasca, P.: GEO-RBAC: A Spatially Aware RBAC. In: SACMAT. Proceedings of ACM Symposium on Access Control Models and Technologies, pp. 29–37 (2005)

    Google Scholar 

  15. Ray, I., Kumar, M., Yu, L.: LRBAC: A Location-Aware Role-Based Access Control Model. In: ICISS. Proceedings of International Conference on Information Systems Security, pp. 147–161 (2006)

    Google Scholar 

  16. Niezette, M., Stevenne, J.: An Efficient Symbolic Representation of Periodic Time. In: Proceedings of International Conference on Information and Knowledge Management (1992)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. School of Information Technology,  

    Subhendu Aich & Shamik Sural

  2. Department of Computer Science & Engineering, Indian Institute of Technology, Kharagpur, India

    A. K. Majumdar

Authors
  1. Subhendu Aich
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Shamik Sural
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. A. K. Majumdar
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Robert Meersman Zahir Tari

Rights and permissions

Reprints and permissions

Copyright information

© 2007 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Aich, S., Sural, S., Majumdar, A.K. (2007). STARBAC: Spatiotemporal Role Based Access Control. In: Meersman, R., Tari, Z. (eds) On the Move to Meaningful Internet Systems 2007: CoopIS, DOA, ODBASE, GADA, and IS. OTM 2007. Lecture Notes in Computer Science, vol 4804. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-76843-2_32

Download citation

  • DOI: https://doi.org/10.1007/978-3-540-76843-2_32

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-76835-7

  • Online ISBN: 978-3-540-76843-2

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation