Skip to Main Content
Most practical applications have dynamic attributes, but conventional access control mechanisms have not addressed the problem sufficiently. We discuss how to realize an access control system that enables us to manage dynamic security policies. Our proposed method is based on role-based access control (RBAC), and the agent decides access rights dynamically for the abstract role, which is defined by the role administrator statically using context-enabled rules and an inference engine. By defining rules using declarative representation (logic programming style), bidirectional queries can be realized for user-role-permission relationships. We demonstrate the usefulness of our proposed system by presenting our project management application and its access control system.