An authorization model for temporal and derived data
- 1 February 2002
- journal article
- Published by Association for Computing Machinery (ACM) in ACM Transactions on Information and System Security
- Vol. 5 (1) , 62-94
- https://doi.org/10.1145/504909.504912
Abstract
The term information portals refers to Web sites that serve as main providers of focused information, gathered from distributed data sources. Gathering and disseminating information through information portals introduce new security challenges. In particular, the authorization specifications, as well as the granting process, are temporal by nature. Also, more often than not, the information provided by the portal is in fact derived from more than one backend data source. Therefore, any authorization model for information portals should support access control based on temporal characteristics of the data, and also should provide tools to prevent indirect unauthorized access through the use of derived data. In this article we focus our attention on devising such an authorization model. The distinguishing features of this model include: (1) the specification of authorizations based on temporal characteristics of data, and (2) a formal framework to derive authorizations in a consistent and safe manner, based on relationships among data.Keywords
This publication has 15 references indexed in Scilit:
- Semantic interoperability in information servicesACM SIGMOD Record, 1999
- An access control model supporting periodicity constraints and temporal reasoningACM Transactions on Database Systems, 1998
- Enforcing mandatory and discretionary security in workflow management systems*Journal of Computer Security, 1997
- Authorization specification and enforcement in federated database systems*Journal of Computer Security, 1997
- A temporal access control mechanism for database systemsIEEE Transactions on Knowledge and Data Engineering, 1996
- An authorization model for workflowsPublished by Springer Nature ,1996
- Towards an infrastructure for temporal databasesACM SIGMOD Record, 1994
- PARDESACM SIGMOD Record, 1993
- A glossary of temporal database conceptsACM SIGMOD Record, 1992
- A model of authorization for next-generation database systemsACM Transactions on Database Systems, 1991