000101444 001__ 101444
000101444 005__ 20190117191935.0
000101444 037__ $$aARTICLE
000101444 245__ $$aData security in location-aware applications: an approach based on RBAC
000101444 260__ $$c2007
000101444 269__ $$a2007
000101444 336__ $$aJournal Articles
000101444 520__ $$aData security in a mobile context is a critical issue. Over the last few years a new category of location-based services, the Enterprise LBS (ELBS), has emerged focusing on the demands of mobility in organisations. These applications pose challenging requirements, including the need of selective access to ELBS based on the position of mobile users and spatially bounded organisational roles. To deal with these requirements a novel access control system, named GEO-RBAC, has been developed. GEO-RBAC extends the NIST RBAC (Role-Based Access Control) standard with the notions of spatial role, role-dependent position, role schema and role instance. Further, roles become enabled/disabled based on the position of the user. In the paper we present GEO-RBAC, a full-fledged RBAC-based model, consisting, like RBAC, of three distinct components: the Core GEO-RBAC, the Hierarchical GEO-RBAC and the Constrained GEO-RBAC. The paper focuses on the innovative aspects that have been introduced in the model to account for the spatial dimension. Further, a rigorous specification of the model (reference model) is presented.
000101444 6531_ $$aaccess control
000101444 6531_ $$adata security
000101444 6531_ $$ageographic information systems
000101444 6531_ $$ainformation and computer security
000101444 6531_ $$alocation aware applications
000101444 6531_ $$amobile systems
000101444 6531_ $$aRBAC
000101444 6531_ $$arole based access control
000101444 700__ $$0245048$$aDamiani, M. L.$$g168720
000101444 700__ $$aBertino, E.
000101444 700__ $$aPerlasca, P.
000101444 773__ $$j1$$k1/2$$q5-38$$tInt. Journal of Information and Computer Security
000101444 909C0 $$0252164$$pLBD$$xU10410
000101444 909CO $$ooai:infoscience.tind.io:101444$$particle
000101444 937__ $$aLBD-ARTICLE-2007-002
000101444 973__ $$aEPFL$$rREVIEWED$$sPUBLISHED
000101444 980__ $$aARTICLE