Abstract
With the increasing acceptability of interoperability standards like Open Archives Initiative protocol for metadata harvesting, it is becoming feasible to build federated discovery services which aggregate metadata from different digital libraries (data providers) and provide a unified search interface to users. Content-based access control is one of the primary requirements of data providers. While this concept has been predominant in the research realm, practical systems incorporating this concept are rare. In this paper, we propose a framework that supports and enforces content-based access policies using existing COTS components. We have prototyped the framework by building a system using XACML, and a XACML policy engine. The system can also be generalized to environments other than digital libraries.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Adam, N.R., Atluri, V., Bertino, E., Ferrari, E.: A content-based authorization model for digital libraries. IEEE Trans. on Knowledge and Data Engineering 14(2), 296–315 (2002)
Bhoopalam, K., Maly, K., Mukkamala, R., Zubair, M.: A Flexible Framework for Content Based Access Management for Federated Digital Libraries. In: Proceedings of IADIS, Madrid, October 6-9 (2004)
Bhoopalam, K., Maly, K., Mukkamala, R., Zubair, M.: Access Management in Federated Digital Libraries. In: Proceedings of IADIS, Madrid, October 6-9 (2004)
Cantor, S., Erdos, M.: Shibboleth-Architecture DRAFT v05 (April 24, 2004), http://shibboleth.internet2.edu/docs/draft-internet2-shibboleth-arch-v05.pdf
DCMI Metadata Terms, Dublin Core Metadata Initiative, http://dublincore.org/documents/dcmi-terms/
EduPerson Specification, http://www.nmi-edit.org/eduPerson/internet2-mace-dir-eduperson200312.html
Hada, S., Kudo, M.: XML Access Control Language: Provisional Authorization for XML Documents, Tokyo Research Laboratory, IBM Research ( October 16, 2000)
Kodali, N., Farkas, C., Wijesekera, D.: An Authorization Model for Multimedia Digital Libraries. The Int. Journal of Digital Libraries, Vol 4, 139–155 (2004)
Lagoze, C.H., Sompel, V., Nelson, M., Warner, S.: The Open Archives Initiative Protocol for Metadata Harvesting, Open Archives Initiative. (October 21, 2004), http://www.openarchives.org/OAI/openarchivesprotocol.htm
Liu, X., Maly, K., Zubair, M., Nelson, M.: Arc – An OAI Service Provider for Cross Archiving Searching. In: Proceedings of the ACM/IEEE Joint Conference on Digital Libraries, Roanoke, VA, June 24-28, pp. 65–66 (2001)
Maly, K., Anan, H., Tang, J., Nelson, M., Zubair, M., Yang, Z.: Challenges in Building Federation Services over Harvested Metadata. In: Sembok, T.M.T., Zaman, H.B., Chen, H., Urs, S.R., Myaeng, S.-H. (eds.) ICADL 2003. LNCS, vol. 2911, pp. 602–614. Springer, Heidelberg (2003)
Moses, T. (ed.): OASIS eXtensible Access Control Management Language (XACML). Version 2.0, OASIS Standard (February 1, 2005), http://docs.oasis-open.org/xacml/2.0/access_control-xacml-2.0-core-spec-os.pdf
National Science Digital Library (November 5, 2004), http://www.nsdl.org/
Sandhu, R., et al.: Role-Based Access Control Models. IEEE Computer 29(2), 38–47 (1996)
Sandhu, R.: The typed access matrix model. In: Proc. of the 11th IEEE Symp. on Security and Privacy, pp. 122–136 (1992)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2005 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Bhoopalam, K., Maly, K., McCown, F., Mukkamala, R., Zubair, M. (2005). A Standards-Based Approach for Supporting Dynamic Access Policies for a Federated Digital Library. In: Fox, E.A., Neuhold, E.J., Premsmit, P., Wuwongse, V. (eds) Digital Libraries: Implementing Strategies and Sharing Experiences. ICADL 2005. Lecture Notes in Computer Science, vol 3815. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11599517_28
Download citation
DOI: https://doi.org/10.1007/11599517_28
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-30850-8
Online ISBN: 978-3-540-32291-7
eBook Packages: Computer ScienceComputer Science (R0)