An Access Control Framework for the Web of Data

With the emergence of Web Services-based collaborative systems, new issues arise, in particular those related to security. In this context, Web Service access control should be studied, specified and enforced. This work proposes a new access control framework for Inter-Organizational Web Services: “PolyOr- BAC”. On the one hand, the authors extend OrBAC (Organization-Based Access Control Model) to specify rules for intra- as well as inter-organization access control; on the other hand, they enforce these rules by applying access control mechanisms dedicated to Web Services. Furthermore, the authors propose a runtime model checker for the interactions between collaborating organizations, to verify their compliance with previously signed contracts. In this respect, not only their security framework handles secure local and remote accesses, but also deals with competition and mutual suspicion between organizations, controls the Web Service workflows and audits the different interactions. In particular, every deviation from the signed contracts triggers an alarm, the concerned parties are notified, and audits can be used as evidence for a judge to sanction the party responsible for the deviation.

Download Full-text

PolyOrBAC

Virtual Communities ◽

10.4018/978-1-60960-100-3.ch211 ◽

2011 ◽

pp. 537-557

Author(s):

Anas Abou El Kalam ◽

Yves Deswarte

Keyword(s):

Web Services ◽

Access Control ◽

Web Service ◽

Service Access ◽

Control Mechanisms ◽

Model Checker ◽

Control Framework ◽

The One ◽

Organization Based Access Control ◽

The Web

With the emergence of Web Services-based collaborative systems, new issues arise, in particular those related to security. In this context, Web Service access control should be studied, specified and enforced. This work proposes a new access control framework for Inter-Organizational Web Services: “PolyOr- BAC”. On the one hand, the authors extend OrBAC (Organization-Based Access Control Model) to specify rules for intra- as well as inter-organization access control; on the other hand, they enforce these rules by applying access control mechanisms dedicated to Web Services. Furthermore, the authors propose a runtime model checker for the interactions between collaborating organizations, to verify their compliance with previously signed contracts. In this respect, not only their security framework handles secure local and remote accesses, but also deals with competition and mutual suspicion between organizations, controls the Web Service workflows and audits the different interactions. In particular, every deviation from the signed contracts triggers an alarm, the concerned parties are notified, and audits can be used as evidence for a judge to sanction the party responsible for the deviation.

Download Full-text

Ciência da Informação e Humanidades Digitais

10.31219/osf.io/mz794 ◽

2019 ◽

Author(s):

FRANCISCO CARLOS PALETTA

Keyword(s):

Labor Market ◽

Information Literacy ◽

Digital Library ◽

Exploratory Study ◽

Digital Humanities ◽

Information Science ◽

Digital Age ◽

Web Of Data ◽

The University ◽

The Web

This work aims to presents partial results on the research project conducted at the Observatory of the Labor Market in Information and Documentation, School of Communications and Arts of the University of São Paulo on Information Science and Digital Humanities. Discusses Digital Humanities and informational literacy. Highlights the evolution of the Web, the digital library and its connections with Digital Humanities. Reflects on the challenges of the Digital Humanities transdisciplinarity and its connections with the Information Science. This is an exploratory study, mainly due to the current and emergence of the theme and the incipient bibliography existing both in Brazil and abroad.Keywords: Digital Humanities; Information Science; Transcisciplinrity; Information Literacy; Web of Data; Digital Age.

Download Full-text