Skip to main content
SpringerLink
Log in

Context-Dependent Access Control for Web-Based Collaboration Environments with Role-Based Approach

  • Conference paper
Computer Network Security (MMM-ACNS 2003)

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 2776))

Abstract

Controlling access to resources is one of the most important protection goals for web-based collaboration environments in practice. In general, access control requires identification of subjects that intend to use resources. Today, there are several identification mechanisms for subjects, providing different security levels. However, some of them are only suitable to be used in specific environments. In this paper we consider access control to web-based collaboration environments where access control also depends on the actually used identification mechanism as a context-dependent parameter. Furthermore, we show how to model this kind of context-dependent access control for web-based collaboration environments by using role-based concepts. Additionally, we present how complex role hierarchies in the context-dependent case can be generated from basic role hierarchies. This is achieved by applying direct products as a special arithmetic operation over role hierarchies and context hierarchies.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Bafoutsou, G., Metzas, G.: Review and functional classification of collaborative systems. International Journal of Information Management, 281–305 (2002)

    Google Scholar 

  2. Meier, C., Benz, H.: Business process requirements and paradigm of co-operative work: Enhanced Platform. UNITE Project Deliverable (2002), http://www.unite-project.org

  3. Freier, A., Karlton, P., Kocher, P.: The SSL protocol version 3.0. Internet Draft (1996)

    Google Scholar 

  4. Dierks, C., Allen, C.: The TLS protocol version 1.0. RFC 2246 (1999)

    Google Scholar 

  5. Fielding, R., Gettys, J., Mogul, J., Frystyk, H., Masinter, L., Leach, P., Berners-Lee, T.: Hypertext Transfer Protocol—HTTP/1.1. RFC 2616 (1999)

    Google Scholar 

  6. Kristol, D., Montulli, L.: HTTP State Management Mechanism. RFC 2109 (1997)

    Google Scholar 

  7. Sandhu, R., Ferraiolo, D., Kuhn, R.: The NIST model for role-based access control: towards a unified standard. In: 5th ACM workshop on Role-based Access Control (2000)

    Google Scholar 

  8. Ferraiolo, D., Sandhu, R., Gavrila, S., Kuhn, D., Chandramouli, R.: Proposed NIST standard for role-based access control. ACM Trans. on Inf. and Syst. Security 4 (2001)

    Google Scholar 

  9. Bertino, E., Pagani, E., Rossi, G., Samarati, P.: Protecting information on the web. Comm. of the ACM 43 (2000)

    Google Scholar 

  10. Joshi, J., Aref, W., Spafford, E.: Security models for web-based applications. Comm. of the ACM 44 (2001)

    Google Scholar 

  11. Zapf, M., Reinema, R., Wolf, R., Türpe, S.: UNITE—an agent-oriented teamwork environment. In: Karmouch, A., Magedanz, T., Delgado, J. (eds.) MATA 2002. LNCS, vol. 2521, pp. 302–315. Springer, Heidelberg (2002)

    Chapter  Google Scholar 

  12. Sandhu, R.: Role activation hierarchies. In: 3rd ACM workshop on Role-based access control (1998)

    Google Scholar 

  13. Davey, B., Priestley, H.: Introduction to Lattices and Order. Cambridge Univ Press, Cambridge (2002)

    MATH  Google Scholar 

  14. Jonsson, B.: Arithmetic of ordered sets. In: Rival, J. (ed.) Ordered Sets. Proceedings of the NATO Advanced Study Institute (1981)

    Google Scholar 

  15. Barkley, J., Cincotta, A., Ferraiolo, D., Gavrilla, S., Kuhn, D.: Role-based access control for the world wide web. In: 20th National Information Systems Security Conference (1997)

    Google Scholar 

  16. Park, J., Sandhu, R., Ahn, G.: Role-based access control on the web. ACM Trans. on Inf. and Syst. Security 4 (2001)

    Google Scholar 

  17. Tari, Z., Chan, S.: A role-based access control model for intranet security. IEEE Internet Computing 1 (1997)

    Google Scholar 

  18. Chadwick, D., Otenko, A.: The PERMIS X.509 role based privilege management infrastructure. In: 7th ACM Symposium on Access Control Models and Technologies (2002)

    Google Scholar 

  19. Covington, M., Moyer, M., Ahamad, M.: Generalized role-based access control for securing future applications. In: 23rd Nat. Inform. Syst. Security Conference, Baltimore, MD (2000)

    Google Scholar 

  20. Georgiadis, C., Mavridis, I., Pangalos, G., Thomas, R.: Flexible team-based access control using contexts. In: 6th ACM Symposium on Access Control Models and Technologies, pp. 21–30 (2001)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Fraunhofer Gesellschaft (FhG), Institute for Secure Telecooperation (SIT), Darmstadt, Germany

    Ruben Wolf & Markus Schneider

Authors
  1. Ruben Wolf
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Markus Schneider
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. St. Petersburg Intitute for Informaticsand Automation, 39, 14-th Liniya, 199178, St. Petersburg, Russia

    Vladimir Gorodetsky

  2. AFRL/IF, 525 Brooks Rd., 13441-4505, Rome, NY, USA

    Leonard Popyack

  3. US Air Force, Binghamton University (SUNYI), 13902, Binghamton, NY, USA

    Victor Skormin

Rights and permissions

Reprints and permissions

Copyright information

© 2003 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Wolf, R., Schneider, M. (2003). Context-Dependent Access Control for Web-Based Collaboration Environments with Role-Based Approach. In: Gorodetsky, V., Popyack, L., Skormin, V. (eds) Computer Network Security. MMM-ACNS 2003. Lecture Notes in Computer Science, vol 2776. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-45215-7_22

Download citation

  • DOI: https://doi.org/10.1007/978-3-540-45215-7_22

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-40797-3

  • Online ISBN: 978-3-540-45215-7

  • eBook Packages: Springer Book Archive

Publish with us

Policies and ethics

Search

Navigation