Design and implementation of document access control model based on role and security policy

Liangjian Mao, Shuzhen Yao, Kai Zhang, Kouichi Sakurai

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

To design a method of document access control with flexibility, generality and fine-granularity, we establish a document access control model, which is an abstract description for general scene of document access. Security policies are presented to describe security constraints, so as to meet security requirements of this model. In order to demonstrate the theories and strategies more intuitively, we design a prototype system of document access control based on XACML-RBAC framework to verify the validity of model and algorithms and the feasibility of mechanism. It realizes the authorization protection of the standard OFFICE documents.

Original languageEnglish
Title of host publicationTrusted Systems - Second International Conference, INTRUST 2010, Revised Selected Papers
Pages26-36
Number of pages11
DOIs
Publication statusPublished - Nov 29 2011
Event2nd International Conference on Trusted Systems, INTRUST 2010 - Beijing, China
Duration: Dec 13 2010Dec 15 2010

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume6802 LNCS
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Other

Other2nd International Conference on Trusted Systems, INTRUST 2010
CountryChina
CityBeijing
Period12/13/1012/15/10

Fingerprint

Security Policy
Access Control
Access control
Model-based
Role-based Access Control
Authorization
Granularity
Flexibility
Model
Prototype
Verify
Requirements
Demonstrate
Design

All Science Journal Classification (ASJC) codes

  • Theoretical Computer Science
  • Computer Science(all)

Cite this

Mao, L., Yao, S., Zhang, K., & Sakurai, K. (2011). Design and implementation of document access control model based on role and security policy. In Trusted Systems - Second International Conference, INTRUST 2010, Revised Selected Papers (pp. 26-36). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 6802 LNCS). https://doi.org/10.1007/978-3-642-25283-9_2

Design and implementation of document access control model based on role and security policy. / Mao, Liangjian; Yao, Shuzhen; Zhang, Kai; Sakurai, Kouichi.

Trusted Systems - Second International Conference, INTRUST 2010, Revised Selected Papers. 2011. p. 26-36 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 6802 LNCS).

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Mao, L, Yao, S, Zhang, K & Sakurai, K 2011, Design and implementation of document access control model based on role and security policy. in Trusted Systems - Second International Conference, INTRUST 2010, Revised Selected Papers. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 6802 LNCS, pp. 26-36, 2nd International Conference on Trusted Systems, INTRUST 2010, Beijing, China, 12/13/10. https://doi.org/10.1007/978-3-642-25283-9_2
Mao L, Yao S, Zhang K, Sakurai K. Design and implementation of document access control model based on role and security policy. In Trusted Systems - Second International Conference, INTRUST 2010, Revised Selected Papers. 2011. p. 26-36. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). https://doi.org/10.1007/978-3-642-25283-9_2
Mao, Liangjian ; Yao, Shuzhen ; Zhang, Kai ; Sakurai, Kouichi. / Design and implementation of document access control model based on role and security policy. Trusted Systems - Second International Conference, INTRUST 2010, Revised Selected Papers. 2011. pp. 26-36 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).
@inproceedings{4404fb9369ac45fbbfef087f524fe305,
title = "Design and implementation of document access control model based on role and security policy",
abstract = "To design a method of document access control with flexibility, generality and fine-granularity, we establish a document access control model, which is an abstract description for general scene of document access. Security policies are presented to describe security constraints, so as to meet security requirements of this model. In order to demonstrate the theories and strategies more intuitively, we design a prototype system of document access control based on XACML-RBAC framework to verify the validity of model and algorithms and the feasibility of mechanism. It realizes the authorization protection of the standard OFFICE documents.",
author = "Liangjian Mao and Shuzhen Yao and Kai Zhang and Kouichi Sakurai",
year = "2011",
month = "11",
day = "29",
doi = "10.1007/978-3-642-25283-9_2",
language = "English",
isbn = "9783642252822",
series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",
pages = "26--36",
booktitle = "Trusted Systems - Second International Conference, INTRUST 2010, Revised Selected Papers",

}

TY - GEN

T1 - Design and implementation of document access control model based on role and security policy

AU - Mao, Liangjian

AU - Yao, Shuzhen

AU - Zhang, Kai

AU - Sakurai, Kouichi

PY - 2011/11/29

Y1 - 2011/11/29

N2 - To design a method of document access control with flexibility, generality and fine-granularity, we establish a document access control model, which is an abstract description for general scene of document access. Security policies are presented to describe security constraints, so as to meet security requirements of this model. In order to demonstrate the theories and strategies more intuitively, we design a prototype system of document access control based on XACML-RBAC framework to verify the validity of model and algorithms and the feasibility of mechanism. It realizes the authorization protection of the standard OFFICE documents.

AB - To design a method of document access control with flexibility, generality and fine-granularity, we establish a document access control model, which is an abstract description for general scene of document access. Security policies are presented to describe security constraints, so as to meet security requirements of this model. In order to demonstrate the theories and strategies more intuitively, we design a prototype system of document access control based on XACML-RBAC framework to verify the validity of model and algorithms and the feasibility of mechanism. It realizes the authorization protection of the standard OFFICE documents.

UR - http://www.scopus.com/inward/record.url?scp=82055200288&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=82055200288&partnerID=8YFLogxK

U2 - 10.1007/978-3-642-25283-9_2

DO - 10.1007/978-3-642-25283-9_2

M3 - Conference contribution

AN - SCOPUS:82055200288

SN - 9783642252822

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 26

EP - 36

BT - Trusted Systems - Second International Conference, INTRUST 2010, Revised Selected Papers

ER -