A Policy Model and Framework for Context-Aware Access Control to Information Resources†. (18th July 2018)
- Record Type:
- Journal Article
- Title:
- A Policy Model and Framework for Context-Aware Access Control to Information Resources†. (18th July 2018)
- Main Title:
- A Policy Model and Framework for Context-Aware Access Control to Information Resources†
- Authors:
- Kayes, A S M
Han, Jun
Rahayu, Wenny
Dillon, Tharam
Islam, Md Saiful
Colman, Alan - Abstract:
- Abstract: In today's dynamic ICT environments, the ability to control users' access to information resources and services has become ever important. On the one hand, it should provide flexibility to adapt to the users' changing needs, while on the other hand, it should not be compromised. The user is often faced with different contexts and environments that may change the user's information needs. To allow for this, it is essential to incorporate the dynamically changing context information into the access control policies to reflect different contexts and environments through the use of a new context-aware access control (CAAC) approach with both dynamic associations of user-role and role-permission capabilities. Our proposed CAAC framework differs from the existing access control frameworks in that it supports context-sensitive access control to information resources and dynamically re-evaluates the access control decisions when there are dynamic changes to the context. It uses the dynamic context information to specify the user-role and role-permission assignment policies. We first present a formal policy model for our framework, specifying CAAC policies. Using this model, we then introduce a policy ontology for modeling CAAC policies and a policy enforcement architecture which supports access to resources according to the dynamically changing context information. In addition, we demonstrate the feasibility of our framework by considering (i) the completeness, correctnessAbstract: In today's dynamic ICT environments, the ability to control users' access to information resources and services has become ever important. On the one hand, it should provide flexibility to adapt to the users' changing needs, while on the other hand, it should not be compromised. The user is often faced with different contexts and environments that may change the user's information needs. To allow for this, it is essential to incorporate the dynamically changing context information into the access control policies to reflect different contexts and environments through the use of a new context-aware access control (CAAC) approach with both dynamic associations of user-role and role-permission capabilities. Our proposed CAAC framework differs from the existing access control frameworks in that it supports context-sensitive access control to information resources and dynamically re-evaluates the access control decisions when there are dynamic changes to the context. It uses the dynamic context information to specify the user-role and role-permission assignment policies. We first present a formal policy model for our framework, specifying CAAC policies. Using this model, we then introduce a policy ontology for modeling CAAC policies and a policy enforcement architecture which supports access to resources according to the dynamically changing context information. In addition, we demonstrate the feasibility of our framework by considering (i) the completeness, correctness and consistency of the ontology concepts through application to healthcare scenarios and (ii) the performance and usability testing of the framework when using desktop and mobile-based prototypes. … (more)
- Is Part Of:
- Computer journal. Volume 62:Number 5(2019)
- Journal:
- Computer journal
- Issue:
- Volume 62:Number 5(2019)
- Issue Display:
- Volume 62, Issue 5 (2019)
- Year:
- 2019
- Volume:
- 62
- Issue:
- 5
- Issue Sort Value:
- 2019-0062-0005-0000
- Page Start:
- 670
- Page End:
- 705
- Publication Date:
- 2018-07-18
- Subjects:
- context-awareness -- context-aware user-role assignment -- context-aware role-permission assignment -- context-aware policies -- context-aware access control
Computers -- Periodicals
005.1 - Journal URLs:
- http://comjnl.oxfordjournals.org/ ↗
http://ukcatalogue.oup.com/ ↗ - DOI:
- 10.1093/comjnl/bxy065 ↗
- Languages:
- English
- ISSNs:
- 0010-4620
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 3394.060000
British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 11798.xml