%0 Journal Article
%T Supporting Attribute-based Access Control in Authorization and Authentication Infrastructures with Ontologies
%A Torsten Priebe
%A Wolfgang Dobmeier
%A Christian Schl£¿ger
%A Nora Kamprath
%J Journal of Software
%D 2007
%I Academy Publisher
%R 10.4304/jsw.2.1.27-38
%X In highly open systems like the Internet, attributebased access control (ABAC) has proven its appropriateness. This is reflected in the utilization of ABAC in authentication and authorization infrastructures (AAIs). However, specification and maintenance of ABAC policies has turned out to be complex and error-prone even in federations of limited size, especially if heterogeneous attribute schemes are involved. Here, the arising Semantic Web can contribute to a solution. This paper describes an architecture for embedding the access control process into a semantic context employing external knowledge in form of ontologies. We base our proposal on extensions of established open standards. Using the approach presented, policy management at the different sites of a federation is simplified by a semantic attribute management facility.
%K Security
%K attribute-based access control
%K authorization and authentication infrastructures
%U http://ojs.academypublisher.com/index.php/jsw/article/view/1427