Skip to main content
SpringerLink
Log in

A Flexible Access Control Model for Distributed Collaborative Editors

  • Conference paper
Secure Data Management (SDM 2009)

Part of the book series: Lecture Notes in Computer Science ((LNISA,volume 5776))

Included in the following conference series:

Abstract

Distributed Collaborative Editors (DCE) provide computer support for modifying simultaneously shared documents, such as articles, wiki pages and programming source code, by dispersed users. Controlling access in such systems is still a challenging problem, as they need dynamic access changes and low latency access to shared documents. In this paper, we propose a flexible access control model where the shared document and its authorization policy are replicated at the local memory of each user. To deal with latency and dynamic access changes, we use an optimistic access control technique in such a way that enforcement of authorizations is retroactive. We show that naive coordination between updates of both copies can create security holes on the shared document, by permitting illegal modifications or rejecting legal modifications. Finally, we present a prototype for managing authorizations in collaborative editing work which may be deployed easily on P2P networks.

This work has been supported by AVANTSSAR Project FP7 216471.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Bertino, E., Bettini, C., Ferrari, E., Samarati, P.: A decentralized temporal autoritzation model. In: SEC, pp. 271ā€“280 (1996)

    Google ScholarĀ 

  2. Bullock, A., Benford, S.: An access control framework for multi-user collaborative environments. In: GROUP 1999, pp. 140ā€“149. ACM, New York (1999)

    Google ScholarĀ 

  3. Ellis, C.A., Gibbs, S.J.: Concurrency Control in Groupware Systems. In: SIGMOD Conference, vol.Ā 18, pp. 399ā€“407 (1989)

    Google ScholarĀ 

  4. Imine, A.: Coordination model for real-time collaborative editors. In: Field, J., Vasconcelos, V.T. (eds.) COORDINATION 2009. LNCS, vol.Ā 5521, pp. 225ā€“246. Springer, Heidelberg (2009)

    Google ScholarĀ 

  5. Jaeger, T., Prakash, A.: Requirements of role-based access control for collaborative systems. In: RBAC 1995, p. 16. ACM, New York (1996)

    Google ScholarĀ 

  6. Li, D., Li, R.: An operational transformation algorithm and performance evaluation. Computer Supported Cooperative WorkĀ 17(5-6), 469ā€“508 (2008)

    ArticleĀ  Google ScholarĀ 

  7. Lushman, B., Cormack, G.V.: Proof of correctness of resselā€™s adopted algorithm. Information Processing LettersĀ 86(3), 303ā€“310 (2003)

    ArticleĀ  MathSciNetĀ  MATHĀ  Google ScholarĀ 

  8. Povey, D.: Optimistic security: a new access control paradigm. In: NSPW 1999: Proceedings of the 1999 workshop on New security paradigms, pp. 40ā€“45. ACM, New York (2000)

    Google ScholarĀ 

  9. Ressel, M., Nitsche-Ruhland, D., Gunzenhauser, R.: An Integrating, Transformation-Oriented Approach to Concurrency Control and Undo in Group Editors. In: ACM CSCW 1996, Boston, USA, November 1996, pp. 288ā€“297 (1996)

    Google ScholarĀ 

  10. Samarati, P., Ammann, P., Jajodia, S.: Maintaining replicated authorizations in distributed database systems. Data Knowl. Eng.Ā 18(1), 55ā€“84 (1996)

    ArticleĀ  MATHĀ  Google ScholarĀ 

  11. Sandhu, R.S., Coyne, E.J., Feinstein, H.L., Youman, C.E.: Role-based access control models. ComputerĀ 29(2), 38ā€“47 (1996)

    ArticleĀ  Google ScholarĀ 

  12. Shen, H., Dewan, P.: Access control for collaborative environments. In: CSCW 1992, pp. 51ā€“58. ACM, New York (1992)

    Google ScholarĀ 

  13. Sun, C., Ellis, C.: Operational transformation in real-time group editors: issues, algorithms, and achievements. In: ACM CSCW 1998, pp. 59ā€“68 (1998)

    Google ScholarĀ 

  14. Sun, C., Jia, X., Zhang, Y., Yang, Y., Chen, D.: Achieving Convergence, Causality-preservation and Intention-preservation in real-time Cooperative Editing Systems. ACM Trans. Comput.-Hum. Interact.Ā 5(1), 63ā€“108 (1998)

    ArticleĀ  Google ScholarĀ 

  15. Sun, C., Xia, S., Sun, D., Chen, D., Shen, H., Cai, W.: Transparent adaptation of single-user applications for multi-user real-time collaboration. ACM Trans. Comput.-Hum. Interact.Ā 13(4), 531ā€“582 (2006)

    ArticleĀ  Google ScholarĀ 

  16. Tolone, W., Ahn, G.-J., Pai, T., Hong, S.-P.: Access control in collaborative systems. ACM Comput. Surv.Ā 37(1), 29ā€“41 (2005)

    ArticleĀ  Google ScholarĀ 

  17. Xin, T., Ray, I.: A lattice-based approach for updating access control policies in real-time. Inf. Syst.Ā 32(5), 755ā€“772 (2007)

    ArticleĀ  Google ScholarĀ 

Download references

Author information

Authors and Affiliations

  1. Nancy University and INRIA Nancy-Grand Est, France

    Abdessamad ImineĀ &Ā Asma Cherif

  2. INRIA Nancy-Grand Est, France

    Michaƫl Rusinowitch

Authors
  1. Abdessamad Imine
    View author publications

    You can also search for this author in PubMedĀ Google Scholar

  2. Asma Cherif
    View author publications

    You can also search for this author in PubMedĀ Google Scholar

  3. Michaƫl Rusinowitch
    View author publications

    You can also search for this author in PubMedĀ Google Scholar

Editor information

Editors and Affiliations

  1. Department of Computer Science, University of Twente, P.O. Box 217, 7500 AE, Enschede, The Netherlands

    Willem Jonker

  2. Philips Research Laboratories, Koninklijke Philips Electronics N.V., High Tech Ampus 34, 5656 AE, Eindhoven, The Netherlands

    Milan Petković

Rights and permissions

Reprints and permissions

Copyright information

Ā© 2009 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Imine, A., Cherif, A., Rusinowitch, M. (2009). A Flexible Access Control Model for Distributed Collaborative Editors. In: Jonker, W., Petković, M. (eds) Secure Data Management. SDM 2009. Lecture Notes in Computer Science, vol 5776. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-04219-5_6

Download citation

  • DOI: https://doi.org/10.1007/978-3-642-04219-5_6

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-642-04218-8

  • Online ISBN: 978-3-642-04219-5

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation