LTAM: A Location-Temporal Authorization Model
Conference Proceeding Article
This paper describes an authorization model for specifying access privileges of users who make requests to access a set of locations in a building or more generally a physical or virtual infrastructure. In the model, primitive locations can be grouped into composite locations and the connectivities among locations are represented in a multilevel location graph. Authorizations are defined with temporal constraints on the time to enter and leave a location and constraints on the number of times users can access a location. Access control enforcement is conducted by monitoring user movement and checking access requests against an authorization database. The authorization model also includes rules that define the relationships among authorizations. We also describe the problem of finding inaccessible locations given a set of user specified authorizations and a multilevel location graph, and outline a solution algorithm.
Databases and Information Systems | Numerical Analysis and Scientific Computing
Data Management and Analytics
Secure Data Management: VLDB 2004 Workshop, SDM 2004, Toronto, Canada, August 30, 2004. Proceedings
City or Country
YU, Hai and LIM, Ee Peng.
LTAM: A Location-Temporal Authorization Model. (2004). Secure Data Management: VLDB 2004 Workshop, SDM 2004, Toronto, Canada, August 30, 2004. Proceedings. 3178, 172-186. Research Collection School Of Information Systems.
Available at: http://ink.library.smu.edu.sg/sis_research/1022