skip to main content
10.1145/2071880.2071891acmconferencesArticle/Chapter ViewAbstractPublication PagesgisConference Proceedingsconference-collections
research-article

Administration of (Geo)XACML policies for spatial data infrastructures

Published: 01 November 2011 Publication History

Abstract

Thanks to specifications like XACML v3.0, GeoXACML v3.0 and the XACML v3.0 OGC Web Service profile, it is fairly straight forward to implement powerful access control systems that protect Geo Web Services and spatial data in spatial data infrastructures (SDIs). The underlying hybrid right model of these systems combines rule-, rewrite- and role-based rights models and guarantees that expressive fine grained access rights can be defined and enforced.
The new challenge that arises when using these access control systems is to provide suitable administration systems that support the sound administration of the emerging complex policies. This paper introduces an expressive layered administration model that enables distributed and tractable administration of complex spatial access control policies as found in SDIs.

References

[1]
J. Herrmann. Access control systems for spatial data infrastructures and their administration. In Proceedings of the 1st International Conference and Exhibition on Computing for Geospatial Research and Application, COM. Geo '10, pages 47:1--47:2, New York, NY, USA, 2010. ACM.
[2]
J. Herrmann. Xacml v3.0 ogc web service profile version 0.8.0. Ogc implementation standard, document stage: Working draft, Open Geospatial Consortium (OGC), Oct 2011.
[3]
J. Herrmann. Access Control in Service Oriented Architectures applied to spatial data infrastructures. PhD thesis, Technische Universität Münchenn, München, Deutschland, Dec 2011 (expected).
[4]
J. Herrmann and A. Matheus. Geospatial extensible access control markup language (geoxacml), version 3.0. Ogc implementation standard, document stage: Working draft, Open Geospatial Consortium (OGC), Oct 2011.
[5]
R. Levinson, H. Lockhart, and E. Rissanen. Xacml v3.0 hierarchical resource profile version 1.0. Oasis committee specification, Organization for the Advancement of Structured Information Standards (OASIS), August 2010.
[6]
E. Rissanen. extensible access control markup language (xacml) version 3.0. Oasis committee specification, Organization for the Advancement of Structured Information Standards (OASIS), August 2010.
[7]
E. Rissanen. Xacml v3.0 core and hierarchical role based access control (rbac) profile version 1.0. Oasis committee specification, Organization for the Advancement of Structured Information Standards (OASIS), August 2010.
[8]
E. Rissanen. Xacml v3.0 multiple decision profile version 1.0. Oasis committee specification, Organization for the Advancement of Structured Information Standards (OASIS), August 2010.

Cited By

View all

Index Terms

  1. Administration of (Geo)XACML policies for spatial data infrastructures

    Recommendations

    Comments

    Information & Contributors

    Information

    Published In

    cover image ACM Conferences
    SPRINGL '11: Proceedings of the 4th ACM SIGSPATIAL International Workshop on Security and Privacy in GIS and LBS
    November 2011
    74 pages
    ISBN:9781450310321
    DOI:10.1145/2071880
    Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

    Sponsors

    In-Cooperation

    Publisher

    Association for Computing Machinery

    New York, NY, United States

    Publication History

    Published: 01 November 2011

    Permissions

    Request permissions for this article.

    Check for updates

    Author Tags

    1. GeoXACML
    2. XACML
    3. access control
    4. layered administration model
    5. policy administration
    6. spatial access control

    Qualifiers

    • Research-article

    Conference

    GIS '11
    Sponsor:

    Contributors

    Other Metrics

    Bibliometrics & Citations

    Bibliometrics

    Article Metrics

    • Downloads (Last 12 months)1
    • Downloads (Last 6 weeks)0
    Reflects downloads up to 16 Feb 2025

    Other Metrics

    Citations

    Cited By

    View all

    View Options

    Login options

    View options

    PDF

    View or Download as a PDF file.

    PDF

    eReader

    View online with eReader.

    eReader

    Figures

    Tables

    Media

    Share

    Share

    Share this Publication link

    Share on social media