ACTkit: Un marco para la definición y ejecución de las funciones, contenido y basadas en el contexto las políticas de control de acceso (ACTkit: A Framework for the Definition and Enforcement of Role, Content and Context-based Access Control Policies)

Rodrigo Martínez (rmartinez@tilsor.com.uy), Gustavo Betarte (gustun@fing.edu.uy)


Universidad de la República (FING ‑ UDELAR)
This paper appears in: Revista IEEE América Latina

Publication Date: April 2012
Volume: 10,   Issue: 3 
ISSN: 1548-0992


Abstract:
This work describes a framework, called ACTkit, for the definition and enforcement of dynamic access control policies on (multi-tiered) information systems. ACTkit embodies a language for defining security policies built out of role-, context- and content-based access control rules and an access control module responsible for the policy enforcement. A model, which has been defined as an extension of Hierarchical RBAC to provide a precise semantics for the security policies, is also presented and discussed.

Index Terms:
Authorization, RBAC, Application Security, Context-based and Content-based Access Control.   


Documents that cite this document
This function is not implemented yet.


[PDF Full-Text (431)]