TY - GEN
T1 - Semantic access control for information interoperation
AU - Pan, Chi Chun
AU - Mitra, Prasenjit
AU - Liu, Peng
PY - 2006
Y1 - 2006
N2 - Sharing information across different organizations is a critical problem. Using security enforcement mechanisms, accessing databases is limited to authorized users only. However, if databases and access control policies are syntactically and schematically heterogeneous, information interoperation becomes a crucial challenge. In order to allow users from multiple organizations to access databases, a better access control model is desired. In this paper, we propose Semantic Access Control based on popular Role-Base Access Control. Semantic Access Control provides secure access control to databases while resolving the heterogeneity among the databases. We present Semantic Access Control Enabler (SAGE), a novel middleware-based system that has been designed and implemented to enable Semantic Access Control on the Web. SAGE is a middleware system that requires only a few changes to be done on the legacy systems of any organizations involved. Unlike traditional mediator technologies, we integrate heterogeneity resolution and access control into one process, We show that despite performing ontology mappings and query and data translations our toolkit still provides acceptable performance.
AB - Sharing information across different organizations is a critical problem. Using security enforcement mechanisms, accessing databases is limited to authorized users only. However, if databases and access control policies are syntactically and schematically heterogeneous, information interoperation becomes a crucial challenge. In order to allow users from multiple organizations to access databases, a better access control model is desired. In this paper, we propose Semantic Access Control based on popular Role-Base Access Control. Semantic Access Control provides secure access control to databases while resolving the heterogeneity among the databases. We present Semantic Access Control Enabler (SAGE), a novel middleware-based system that has been designed and implemented to enable Semantic Access Control on the Web. SAGE is a middleware system that requires only a few changes to be done on the legacy systems of any organizations involved. Unlike traditional mediator technologies, we integrate heterogeneity resolution and access control into one process, We show that despite performing ontology mappings and query and data translations our toolkit still provides acceptable performance.
UR - http://www.scopus.com/inward/record.url?scp=33748043984&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=33748043984&partnerID=8YFLogxK
U2 - 10.1145/1133058.1133091
DO - 10.1145/1133058.1133091
M3 - Conference contribution
AN - SCOPUS:33748043984
SN - 1595933549
SN - 9781595933546
T3 - Proceedings of ACM Symposium on Access Control Models and Technologies, SACMAT
SP - 237
EP - 246
BT - SACMAT 2006
PB - Association for Computing Machinery (ACM)
T2 - 11th ACM Symposium on Access Control Models and Technologies, SACMAT 2006
Y2 - 7 June 2006 through 9 June 2006
ER -