By Topic

Context-aware Access Control Policy Research for Web Service

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

Formats Non-Member Member
$31 $13
Learn how you can qualify for the best price for this item!
Become an IEEE Member or Subscribe to
IEEE Xplore for exclusive pricing!
close button

puzzle piece

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

4 Author(s)
Huabo Li ; Inst. of Command Autom., PLAUST, Nanjing, China ; Yun Yang ; Zhengqiu He ; Guyu Hu

Web service environment is characterized by its openness and distribution, in which the interacting entities usually have little knowledge about each other and may be in different domains, so the access control for web service has become a challenging problem that needs to be addressed properly. In this paper, an access control policy model based on context and role is proposed that can be appropriate for web service. The model takes context as the center to define and perform access control policies. It uses the contexts of user, environment and resource to execute dynamic roles assignment and constrain the authorization decision. Furthermore, Description Logic is adopted as the policy language to formalize the model. A series of access control policy axioms are defined and the reasoning method is proposed. Experiment result has proved the feasibility and validity of the presented method.

Published in:

Instrumentation, Measurement, Computer, Communication and Control, 2011 First International Conference on

Date of Conference:

21-23 Oct. 2011