Semantic-Based Authorization: Need for Context

Mouiad AL-Wahah, Csilla Farkas
2019 International Journal for Digital Society (IJDS)  
In this paper, we present a context-based access control authorization framework. Our approach is suitable to incorporate dynamically changing access control requirements. We express authorization requirements and contextual information as ontologies. The context ontology, denoted as CTX-Lite, serves as a core ontology for context handling. The authorization ontology, denoted as CBAC ontology, is used for modeling access control policy requirements. We use Description Logic (DL) and Logic
more » ... mming (LP) technologies for implementing Context-Based Access Control (CBAC). In our framework, access authorization decision is made based on the context of the request and the resources. We show that semantic-based techniques can support adaptive and dynamic context-based authorization. We also show that our framework is expressive enough to incorporate the needs of emerging technologies such as Internet of Things (IoT). Furthermore, we develop a proof of concept implementation to demonstrate our work. Moreover, we provide the complexity analysis of the framework and contrast the complexity against possible optimization that can be applied on the framework.
doi:10.20533/ijds.2040.2570.2019.0180 fatcat:7tbtzipdv5cvdgp3wulmpdebza