Negotiation based framework for attribute-based access control policy evaluation

Edward Caprin; Yan Zhang

doi:10.1145/2659651.2659667

Negotiation based framework for attribute-based access control policy evaluation

Edward Caprin, Yan Zhang

School of Computer, Data & Mathematical Sciences

Research output: Chapter in Book / Conference Paper › Conference Paper › peer-review

1 Citation (Scopus)

Abstract

Attribute-Based Access Control (ABAC) maps of characteristics of users, objects and the environment to authorisations. ABAC is a highly versatile access control model well suited to domains such as web services. With the recent set of draft ABAC guidelines by NIST there is a clear desire to promote further adoption of the model. Despite this ABAC continues to face challenges relating to policy evaluation. In this paper we present a novel framework for ABAC policy evaluation based on negotiations and formalised in Answer Set Programming.

Original language	English
Title of host publication	Proceedings of the 7th International Conference on Security of Information and Networks (SIN 2014), Glasgow, Scotland, UK, 9-11 September 2014
Publisher	Association for Computing Machinery
Pages	122-127
Number of pages	6
ISBN (Print)	9781450330336
DOIs	https://doi.org/10.1145/2659651.2659667
Publication status	Published - 2014
Event	International Conference on Security of Information and Networks - Duration: 9 Sept 2014 → …

Conference

Conference	International Conference on Security of Information and Networks
Period	9/09/14 → …

Keywords

answer set programming
attribute-based access control
logic programming
negotiation

Access to Document

10.1145/2659651.2659667

Cite this

@inproceedings{cebcb653bb58459b82379a11240b2ace,

title = "Negotiation based framework for attribute-based access control policy evaluation",

abstract = "Attribute-Based Access Control (ABAC) maps of characteristics of users, objects and the environment to authorisations. ABAC is a highly versatile access control model well suited to domains such as web services. With the recent set of draft ABAC guidelines by NIST there is a clear desire to promote further adoption of the model. Despite this ABAC continues to face challenges relating to policy evaluation. In this paper we present a novel framework for ABAC policy evaluation based on negotiations and formalised in Answer Set Programming.",

keywords = "answer set programming, attribute-based access control, logic programming, negotiation",

author = "Edward Caprin and Yan Zhang",

year = "2014",

doi = "10.1145/2659651.2659667",

language = "English",

isbn = "9781450330336",

pages = "122--127",

booktitle = "Proceedings of the 7th International Conference on Security of Information and Networks (SIN 2014), Glasgow, Scotland, UK, 9-11 September 2014",

publisher = "Association for Computing Machinery",

note = "International Conference on Security of Information and Networks ; Conference date: 09-09-2014",

}

Caprin, E & Zhang, Y 2014, Negotiation based framework for attribute-based access control policy evaluation. in Proceedings of the 7th International Conference on Security of Information and Networks (SIN 2014), Glasgow, Scotland, UK, 9-11 September 2014. Association for Computing Machinery, pp. 122-127, International Conference on Security of Information and Networks, 9/09/14. https://doi.org/10.1145/2659651.2659667

Negotiation based framework for attribute-based access control policy evaluation. / Caprin, Edward; Zhang, Yan.
Proceedings of the 7th International Conference on Security of Information and Networks (SIN 2014), Glasgow, Scotland, UK, 9-11 September 2014. Association for Computing Machinery, 2014. p. 122-127.

Research output: Chapter in Book / Conference Paper › Conference Paper › peer-review

TY - GEN

T1 - Negotiation based framework for attribute-based access control policy evaluation

AU - Caprin, Edward

AU - Zhang, Yan

PY - 2014

Y1 - 2014

N2 - Attribute-Based Access Control (ABAC) maps of characteristics of users, objects and the environment to authorisations. ABAC is a highly versatile access control model well suited to domains such as web services. With the recent set of draft ABAC guidelines by NIST there is a clear desire to promote further adoption of the model. Despite this ABAC continues to face challenges relating to policy evaluation. In this paper we present a novel framework for ABAC policy evaluation based on negotiations and formalised in Answer Set Programming.

AB - Attribute-Based Access Control (ABAC) maps of characteristics of users, objects and the environment to authorisations. ABAC is a highly versatile access control model well suited to domains such as web services. With the recent set of draft ABAC guidelines by NIST there is a clear desire to promote further adoption of the model. Despite this ABAC continues to face challenges relating to policy evaluation. In this paper we present a novel framework for ABAC policy evaluation based on negotiations and formalised in Answer Set Programming.

KW - answer set programming

KW - attribute-based access control

KW - logic programming

KW - negotiation

UR - http://handle.uws.edu.au:8081/1959.7/uws:29212

UR - http://www.sinconf.org/sin2014/

U2 - 10.1145/2659651.2659667

DO - 10.1145/2659651.2659667

M3 - Conference Paper

SN - 9781450330336

SP - 122

EP - 127

BT - Proceedings of the 7th International Conference on Security of Information and Networks (SIN 2014), Glasgow, Scotland, UK, 9-11 September 2014

PB - Association for Computing Machinery

T2 - International Conference on Security of Information and Networks

Y2 - 9 September 2014

ER -

Negotiation based framework for attribute-based access control policy evaluation

Abstract

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this