demonstration

A location aware role and attribute based access control system

Authors:
Isabel F. Cruz

University of Illinois at Chicago

University of Illinois at Chicago
View Profile

,
Rigel Gjomemo

University of Illinois at Chicago

University of Illinois at Chicago
View Profile

,
Benjamin Lin

University of Illinois at Chicago

University of Illinois at Chicago
View Profile

,
Mirko Orsini

University of Illinois at Chicago

University of Illinois at Chicago
View Profile

GIS '08: Proceedings of the 16th ACM SIGSPATIAL international conference on Advances in geographic information systemsNovember 2008Article No.: 84Pages 1–2https://doi.org/10.1145/1463434.1463530

Published:05 November 2008Publication History

GIS '08: Proceedings of the 16th ACM SIGSPATIAL international conference on Advances in geographic information systems

Pages 1–2

ABSTRACT

In this paper, we follow the role-based access control (RBAC) approach and extend it to provide for the dynamic association of roles with users. In our framework, privileges associated with resources are assigned depending on the attribute values of the resources, attribute values associated with users determine the association of users with privileges, and a location mapping function between physical and logical locations allows to enable/disable roles depending on the logical location of the users and thus preserve the privacy of the location. We use Semantic Web technologies and a graphical user interface based on the Google Maps API.

References

E. Bertino, B. Catania, M. L. Damiani, and P. Perlasca. GEO-RBAC: A Spatially Aware RBAC. In ACM Symposium on Access Control Models and Technologies (SACMAT), pages 29--37, 2005. Google ScholarDigital Library
L. Cirio, I. F. Cruz, and R. Tamassia. A Role and Attribute Based Access Control System Using Semantic Web Technologies. In Int. IFIP Workshop on Semantic Web and Web Semantics, volume 4806 of Lecture Notes in Computer Science, pages 1256--1266. Springer, 2007. Google ScholarDigital Library
X. Cui, Y. Chen, and J. Gu. Ex-RBAC: An Extended Role Based Access Control Model for Location-aware Mobile Collaboration System. In Int. Conf. on Internet Monitoring and Protection (ICIMP), pages 36--42, 2007. Google ScholarDigital Library
M. L. Damiani and E. Bertino. Access Control and Privacy in Location-Aware Services for Mobile Organizations. In Int. Conf. on Mobile Data Management (MDM), pages 11--20, 2006. Google ScholarDigital Library

Index Terms

A location aware role and attribute based access control system

Recommendations

Role-Based Access Control Models

Since the 1970s, computer systems have featured multiple applications and served multiple users, leading to heightened awareness of data security issues. System administrators and software developers focused on different kinds of access control to ...
Read More
Delegation in role-based access control

User delegation is a mechanism for assigning access rights available to one user to another user. A delegation can either be a grant or transfer operation. Existing work on delegation in the context of role-based access control models has extensively ...
Read More
Delegation in role-based access control
ESORICS'06: Proceedings of the 11th European conference on Research in Computer Security

User delegation is a mechanism for assigning access rights available to a user to another user. A delegation operation can either be a grant or transfer operation. Delegation for role-based access control models have extensively studied grant ...
Read More

Comments

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

Published in
GIS '08: Proceedings of the 16th ACM SIGSPATIAL international conference on Advances in geographic information systems
November 2008
559 pages
ISBN:9781605583235
DOI:10.1145/1463434
Program Chairs:
Walid G. Aref
Purdue University
,
Mohamed F. Mokbel
University of Minnesota
,
Markus Schneider
University of Florida
Copyright © 2008 ACM
Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]
Sponsors
In-Cooperation
Publisher
Association for Computing Machinery
New York, NY, United States
Publication History
- Published: 5 November 2008
Permissions
Request permissions about this article.
Request Permissions

Check for updates
Qualifiers
- demonstration
Conference

Acceptance Rates
Overall Acceptance Rate220of1,116submissions,20%
Funding Sources
Other Metrics
View Article Metrics

Article Metrics
- 12
  Total Citations
  View Citations
- 440
  Total Downloads
- Downloads (Last 12 months)2
- Downloads (Last 6 weeks)1
Other Metrics
View Author Metrics
Cited By
View all

PDF Format

View or Download as a PDF file.

PDF

eReader

View online with eReader.