Skip to main content
SpringerLink
Log in

Design and Implementation of a Context-Based Security Model

  • Conference paper
Knowledge-Based Software Engineering (JCKBSE 2014)

Part of the book series: Communications in Computer and Information Science ((CCIS,volume 466))

Included in the following conference series:

  • 1778 Accesses

Abstract

This paper proposes a context-based security model and describes one of the design and implementation of enforcement mechanism of it. In this access control model, a kind of object-oriented petri-net with nets-within-nets semantics is adopted as a context representation.

This approach is, particularly, expected to be suitable for dynamic access control within inter-organizational business processes. The overall architecture of the access control model is designed by extending XACML standard architecture. And a Scala-based internal Domain Specific Language is designed to specify security policies.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Similar content being viewed by others

References

  1. Valk, R.: Object Petri Nets. In: Desel, J., Reisig, W., Rozenberg, G. (eds.) Lectures on Concurrency and Petri Nets. LNCS, vol. 3098, pp. 819–848. Springer, Heidelberg (2004)

    Chapter  Google Scholar 

  2. Sandhu, M.S., Coyne, E.J., et al.: Role-based access control models. IEEE Computer 29(2), 38–47 (1996)

    Article  Google Scholar 

  3. OASIS Standard: eXtensible Access Control Markup Language(XACML) 3.0 (January 22, 2013), http://docs.oasis-open.org/xacml/3.0/xacml-3.0-core-spec-os-en.pdf

  4. Sun Microsystems, Inc.: Sun’s XACML Implementation (July 16, 2004), http://sunxacml.sourceforge.net/

  5. Health Policy Bureau of Ministry of Health, Labor and Welfare, Japan: For partial revision of the scope of the emergency life-saving treatment (in Japanese), Health Policy NotificationN o.0302001 (March 2, 2009), http://www.mhlw.go.jp/topics/2009/03/dl/tp0306-3a.pdf

  6. Nielsen, M., Winskel, G.: Petri nets and bisimulation. Theoretical Computer Science 153(1-2), 211–244 (1986)

    Article  MathSciNet  Google Scholar 

  7. Thomas, R.K.: Team-based access control (TMAC): a primitive for applying role-based access controls in collaborative environments. In: RBAC 1997 Proceedings of the Second ACM Workshop on Role-based Access Control, pp. 13–19 (1997)

    Google Scholar 

  8. Deng, J., Brooks, R., Taiber, J.: Security Automata Integrated XACML and Security Validation. In: Proc IEEE SOUTHEASTCON 2010, pp. 338-343 (March 2010)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Faculty of Science and Technology, Keio Univ., Japan

    Tadashi Iijima & Satoshi Kido

Authors
  1. Tadashi Iijima
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Satoshi Kido
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Volgograd State Technical University, Lenin av., 64/1, k.20, Volgograd, Russia

    Alla Kravets

  2. Volgograd State Technical University, Lenin av., 28, k.1406, Volgograd, Russia

    Maxim Shcherbakov

  3. Volgograd State Technical University, Lenin av., 28, k.904, Volgograd, Russia

    Marina Kultsova

  4. Department of Administration Engineering, Keio University, 3-14-1 Hiyoshi, Kohoku-ku, P.O. Box, 223-8522, Yokohama-shi, Kanagawa-ken, Japan

    Tadashi Iijima

Rights and permissions

Reprints and permissions

Copyright information

© 2014 Springer International Publishing Switzerland

About this paper

Cite this paper

Iijima, T., Kido, S. (2014). Design and Implementation of a Context-Based Security Model. In: Kravets, A., Shcherbakov, M., Kultsova, M., Iijima, T. (eds) Knowledge-Based Software Engineering. JCKBSE 2014. Communications in Computer and Information Science, vol 466. Springer, Cham. https://doi.org/10.1007/978-3-319-11854-3_30

Download citation

  • DOI: https://doi.org/10.1007/978-3-319-11854-3_30

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-319-11853-6

  • Online ISBN: 978-3-319-11854-3

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation