Design and implementation of document access control model based on role and security policy

Liangjian Mao; Shuzhen Yao; Kai Zhang; Kouichi Sakurai

doi:10.1007/978-3-642-25283-9_2

Design and implementation of document access control model based on role and security policy

Liangjian Mao, Shuzhen Yao, Kai Zhang, Kouichi Sakurai

Mathematical Informatics

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

To design a method of document access control with flexibility, generality and fine-granularity, we establish a document access control model, which is an abstract description for general scene of document access. Security policies are presented to describe security constraints, so as to meet security requirements of this model. In order to demonstrate the theories and strategies more intuitively, we design a prototype system of document access control based on XACML-RBAC framework to verify the validity of model and algorithms and the feasibility of mechanism. It realizes the authorization protection of the standard OFFICE documents.

Original language	English
Title of host publication	Trusted Systems - Second International Conference, INTRUST 2010, Revised Selected Papers
Pages	26-36
Number of pages	11
DOIs	https://doi.org/10.1007/978-3-642-25283-9_2
Publication status	Published - 2011
Event	2nd International Conference on Trusted Systems, INTRUST 2010 - Beijing, China Duration: Dec 13 2010 → Dec 15 2010

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	6802 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Other

Other	2nd International Conference on Trusted Systems, INTRUST 2010
Country/Territory	China
City	Beijing
Period	12/13/10 → 12/15/10

All Science Journal Classification (ASJC) codes

Theoretical Computer Science
Computer Science(all)

Access to Document

10.1007/978-3-642-25283-9_2

Cite this

Mao, L., Yao, S., Zhang, K., & Sakurai, K. (2011). Design and implementation of document access control model based on role and security policy. In Trusted Systems - Second International Conference, INTRUST 2010, Revised Selected Papers (pp. 26-36). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 6802 LNCS). https://doi.org/10.1007/978-3-642-25283-9_2

Design and implementation of document access control model based on role and security policy. / Mao, Liangjian; Yao, Shuzhen; Zhang, Kai et al.
Trusted Systems - Second International Conference, INTRUST 2010, Revised Selected Papers. 2011. p. 26-36 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 6802 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Mao, L, Yao, S, Zhang, K & Sakurai, K 2011, Design and implementation of document access control model based on role and security policy. in Trusted Systems - Second International Conference, INTRUST 2010, Revised Selected Papers. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 6802 LNCS, pp. 26-36, 2nd International Conference on Trusted Systems, INTRUST 2010, Beijing, China, 12/13/10. https://doi.org/10.1007/978-3-642-25283-9_2

Mao L, Yao S, Zhang K, Sakurai K. Design and implementation of document access control model based on role and security policy. In Trusted Systems - Second International Conference, INTRUST 2010, Revised Selected Papers. 2011. p. 26-36. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-642-25283-9_2

Mao, Liangjian ; Yao, Shuzhen ; Zhang, Kai et al. / Design and implementation of document access control model based on role and security policy. Trusted Systems - Second International Conference, INTRUST 2010, Revised Selected Papers. 2011. pp. 26-36 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{4404fb9369ac45fbbfef087f524fe305,

title = "Design and implementation of document access control model based on role and security policy",

abstract = "To design a method of document access control with flexibility, generality and fine-granularity, we establish a document access control model, which is an abstract description for general scene of document access. Security policies are presented to describe security constraints, so as to meet security requirements of this model. In order to demonstrate the theories and strategies more intuitively, we design a prototype system of document access control based on XACML-RBAC framework to verify the validity of model and algorithms and the feasibility of mechanism. It realizes the authorization protection of the standard OFFICE documents.",

author = "Liangjian Mao and Shuzhen Yao and Kai Zhang and Kouichi Sakurai",

note = "Funding Information: This paper is supported by the National Defense Basic Scientific Research Program of China under grant No. A2120061061, which was accomplished in Software Engineering Institute of BeiHang University.; 2nd International Conference on Trusted Systems, INTRUST 2010 ; Conference date: 13-12-2010 Through 15-12-2010",

year = "2011",

doi = "10.1007/978-3-642-25283-9_2",

language = "English",

isbn = "9783642252822",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

pages = "26--36",

booktitle = "Trusted Systems - Second International Conference, INTRUST 2010, Revised Selected Papers",

}

TY - GEN

T1 - Design and implementation of document access control model based on role and security policy

AU - Mao, Liangjian

AU - Yao, Shuzhen

AU - Zhang, Kai

AU - Sakurai, Kouichi

N1 - Funding Information: This paper is supported by the National Defense Basic Scientific Research Program of China under grant No. A2120061061, which was accomplished in Software Engineering Institute of BeiHang University.

PY - 2011

Y1 - 2011

N2 - To design a method of document access control with flexibility, generality and fine-granularity, we establish a document access control model, which is an abstract description for general scene of document access. Security policies are presented to describe security constraints, so as to meet security requirements of this model. In order to demonstrate the theories and strategies more intuitively, we design a prototype system of document access control based on XACML-RBAC framework to verify the validity of model and algorithms and the feasibility of mechanism. It realizes the authorization protection of the standard OFFICE documents.

AB - To design a method of document access control with flexibility, generality and fine-granularity, we establish a document access control model, which is an abstract description for general scene of document access. Security policies are presented to describe security constraints, so as to meet security requirements of this model. In order to demonstrate the theories and strategies more intuitively, we design a prototype system of document access control based on XACML-RBAC framework to verify the validity of model and algorithms and the feasibility of mechanism. It realizes the authorization protection of the standard OFFICE documents.

UR - http://www.scopus.com/inward/record.url?scp=82055200288&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=82055200288&partnerID=8YFLogxK

U2 - 10.1007/978-3-642-25283-9_2

DO - 10.1007/978-3-642-25283-9_2

M3 - Conference contribution

AN - SCOPUS:82055200288

SN - 9783642252822

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 26

EP - 36

BT - Trusted Systems - Second International Conference, INTRUST 2010, Revised Selected Papers

T2 - 2nd International Conference on Trusted Systems, INTRUST 2010

Y2 - 13 December 2010 through 15 December 2010

ER -

Design and implementation of document access control model based on role and security policy

Abstract

Publication series

Other

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this