Specification, Validation, and Enforcement of a Generalized Spatio-Temporal Role-Based Access Control Model

Ramadan Abdunabi, Mustafa Al-Lail, Indrakshi Ray, Robert B. France
<span title="">2013</span> <i title="Institute of Electrical and Electronics Engineers (IEEE)"> <a target="_blank" rel="noopener" href="https://fatcat.wiki/container/hgg5pl76svbjtlbsafmrhnm24i" style="color: black;">IEEE Systems Journal</a> </i> &nbsp;
With the advent of wireless and mobile devices, many new applications are being developed that make use of the spatio-temporal information of a user to provide better functionality. Such applications also necessitate sophisticated authorization models where access to a resource depends on the credentials of the user and also on the location and time of access. Consequently, researchers have extended the traditional access control models, such as role-based access control, to provide
more &raquo; ... ral access control. We improve upon these models by providing additional features that allow us to express constraints that were not possible until now. We express our model using the unified modeling language (UML) and the object constraint language that are the de facto specification languages used by the industry. Our model has numerous features that interact in subtle ways. To this end, we show how the UML-based specification environment tool can be used to analyze the spatiotemporal access control model of an application. We propose an architecture for enforcing our model and provide a protocol that demonstrates how access control can be granted and revoked in our approach. We also develop a prototype of this architecture to demonstrate the feasibility of our approach.
<span class="external-identifiers"> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1109/jsyst.2013.2242751">doi:10.1109/jsyst.2013.2242751</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/swmrxr66snhr7avkhrsoi63eiq">fatcat:swmrxr66snhr7avkhrsoi63eiq</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20130805012915/http://www.cs.colostate.edu:80/~rabdunab/mss.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/d8/37/d837d4f59b56c5e2db28e2f5f2b2974995ed09c0.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1109/jsyst.2013.2242751"> <button class="ui left aligned compact blue labeled icon button serp-button"> <i class="external alternate icon"></i> ieee.com </button> </a>