LTAM: A Location-Temporal Authorization Model

Author

Hai YU
Ee Peng LIM, Singapore Management UniversityFollow

Publication Type

Conference Proceeding Article

Version

publishedVersion

Publication Date

8-2004

Abstract

This paper describes an authorization model for specifying access privileges of users who make requests to access a set of locations in a building or more generally a physical or virtual infrastructure. In the model, primitive locations can be grouped into composite locations and the connectivities among locations are represented in a multilevel location graph. Authorizations are defined with temporal constraints on the time to enter and leave a location and constraints on the number of times users can access a location. Access control enforcement is conducted by monitoring user movement and checking access requests against an authorization database. The authorization model also includes rules that define the relationships among authorizations. We also describe the problem of finding inaccessible locations given a set of user specified authorizations and a multilevel location graph, and outline a solution algorithm.

Discipline

Databases and Information Systems | Numerical Analysis and Scientific Computing

Publication

Secure Data Management: VLDB 2004 Workshop, SDM 2004, Toronto, Canada, August 30, 2004. Proceedings

Volume

3178

First Page

172

Last Page

186

ISBN

9783540300731

Identifier

10.1007/978-3-540-30073-1_13

Publisher

Springer Verlag

City or Country

Toronto, Canada

Citation

YU, Hai and LIM, Ee Peng. LTAM: A Location-Temporal Authorization Model. (2004). Secure Data Management: VLDB 2004 Workshop, SDM 2004, Toronto, Canada, August 30, 2004. Proceedings. 3178, 172-186.
Available at: https://ink.library.smu.edu.sg/sis_research/1022

Creative Commons License

This work is licensed under a Creative Commons Attribution-NonCommercial-No Derivative Works 4.0 International License.

Additional URL

http://doi.org/10.1007/978-3-540-30073-1_13