Abstract
In case of a disaster, the fast interoperable and secure exchange of spatial data is one of the key tasks. Access control plays an important role for disaster management in order to enforce restricted access to protected spatial data or to declare views on the relevant data for certain users/roles. Therefore, a powerful and interoperable language is needed to declare policies for operations on Web Services used, for example in disaster management. These polices have to contain rules that define which data can be accessed by a person/role through a certain operation (e.g. read, write) under given conditions (e.g. national or regional state of emergency). Different standards exist to establish access control for various requirements (e.g. OASIS’s eXtensible Access Control Markup Language - XACML). However, no standard exists so far that allows the declaration and enforcement of spatial access restrictions needed for the geospatial problem domain. Based on the OASIS Standard XACML, a newly developed spatial extension to XACML called GeoXACML (OGC candidate specification) provides a possible recommendation on how to declare and enforce flexible access rights for spatial data in an interoperable way.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Herrmann J (2005) Spatial Access Control for Geo Web Services. Diploma thesis, Technical University Munich. http://www.geobranchen.de/images/produkte/ GEOdownloads/herrmann_entwicklung.pdf
Matheus A (2005a) Declaration and Enforcement of Access Restrictions for Distributed Geospatial Information Objects. Ph.D. thesis, Technical University Munich. http://tumb1.biblio.tu-muenchen.de/publ/diss/in/2005/matheus.pdf
Matheus A (2005b) GeoXACML – a spatial extension to XACML. OGC Discussion Paper. https://portal.opengeospatial.org/files/index.php?artifact_id=10471
Matheus A, Herrmann J (2007) OGC Candidate standard specification: Geospatial eXtensible Access Control Markup Language. http://portal.opengeospatial.org/ files/?arti-fact_id=25218&version=1
OASIS (ed) (2005) eXtensible Access Control Markup Language (XACML) Version 2.0. Committee Specification. hhttp://docs.oasis-open.org/xacml/2.0/ access_control-xacml-2.0-core-spec-os.pdf
OGC (ed) (1999) OpenGIS Simple Features Specification for SQL Revision 1.1. http://www.opengis.org/techno/specs/99-049.pdf
van Oosterom P et al (eds) (2005) Geo-information for Disaster Management. Berlin, Heidelberg
Orchestra (ed) (2008) The Orchestra Project. http://www.eu-orchestra.org/
Proctor S (2004) Sun’s XACML Implementation Programmer’s Guide for Version 1.2. http://sunxacml.sourceforge.net/guide.html
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2008 Springer-Verlag Berlin Heidelberg
About this chapter
Cite this chapter
Herrmann, J. (2008). Interoperable Access Control for Geo Web Services in Disaster Management. In: Nayak, S., Zlatanova, S. (eds) Remote Sensing and GIS Technologies for Monitoring and Prediction of Disasters. Environmental Science and Engineering. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-79259-8_10
Download citation
DOI: https://doi.org/10.1007/978-3-540-79259-8_10
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-79258-1
Online ISBN: 978-3-540-79259-8
eBook Packages: Earth and Environmental ScienceEarth and Environmental Science (R0)