Tenth International Conference on Semantic Computing (ICSC)

Representing attribute based access control policies in OWL

and

Attribute Based Access Control (ABAC) models are designed with the intention to overcome the shortcomings of classical access control models (DAC, MAC and RBAC) and unifying their advantages. In ABAC, the access control is provided based on generic attributes of entities. Many organizational security policies condition access decisions on attributes. OWL can be used to formally define and process security policies that can be captured using ABAC models. We have defined models, domains, data and security policies in OWL and used a reasoner to decide what is permitted. In this paper we present a way to represent the ABACĪ± model using Web Ontology Language (OWL). The enforcement of policies is done using the EYE reasoner that infers the logical relationship and deduce the access grant for each requested action.


  • 202813 bytes

abac, access control, owl, security, semantic web

InProceedings

IEEE

IEEE

Downloads: 1802 downloads

UMBC ebiquity