Internet Archive Scholar

A trust-based context-aware access control model for Web-services

R. Bhatti, E. Bertino, A. Ghafoor
2004 Proceedings. IEEE International Conference on Web Services, 2004.  

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (227.5 kB)
https://web.archive.org/web/20060905164030/http://web.ics.purdue.edu/~bhattir/academics/research/papers/ICWS_2004.pdf

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2006; you can also visit the original URL. The file type is application/pdf.

A key challenge in Web services security is the design of effective access control schemes that can adequately meet the unique security challenges posed by the Web services paradigm. Despite the recent advances in Web based access control approaches applicable to Web services, there remain issues that impede the development of effective access control models for Web services environment. Amongst them are the lack of context-aware models for access control, and reliance on identity or
more » ... based access control schemes. In this paper, we motivate the design of an access control scheme that addresses these issues, and propose an extended, trust-enhanced version of our XML-based Role Based Access Control (X-RBAC) framework that incorporates context-based access control. We outline the configuration mechanism needed to apply our model to the Web services environment, and also describe the implementation architecture for the system.
doi:10.1109/icws.2004.1314738 dblp:conf/icws/BhattiBG04 fatcat:wxzpemmf5nhudmxxmfrcvffcai
Citation

R. Bhatti, E. Bertino, A. Ghafoor. "A trust-based context-aware access control model for Web-services." Proceedings. IEEE International Conference on Web Services, 2004. (2004) 184-191