In most access control systems, authorization is specified using binary decisions, "yes" or "no," to the access requests resulting in access being permitted or denied respectively. We argue that emerging Internet applications require that this binary decision be extended to "allow access provided some actions are taken. " We propose the notion of provisional actions that specifies the necessary actions to be performed in addition to the binary decision and introduce an access control model for it. We also provide an administrative model for policy management purpose.
The copyright of the original papers published on this site belongs to IEICE. Unauthorized use of the original or translated papers is prohibited. See IEICE Provisions on Copyright for details.
Copy
Michiharu KUDO, Satoshi HADA, "Access Control Model with Provisional Actions" in IEICE TRANSACTIONS on Fundamentals,
vol. E84-A, no. 1, pp. 295-302, January 2001, doi: .
Abstract: In most access control systems, authorization is specified using binary decisions, "yes" or "no," to the access requests resulting in access being permitted or denied respectively. We argue that emerging Internet applications require that this binary decision be extended to "allow access provided some actions are taken. " We propose the notion of provisional actions that specifies the necessary actions to be performed in addition to the binary decision and introduce an access control model for it. We also provide an administrative model for policy management purpose.
URL: https://global.ieice.org/en_transactions/fundamentals/10.1587/e84-a_1_295/_p
Copy
@ARTICLE{e84-a_1_295,
author={Michiharu KUDO, Satoshi HADA, },
journal={IEICE TRANSACTIONS on Fundamentals},
title={Access Control Model with Provisional Actions},
year={2001},
volume={E84-A},
number={1},
pages={295-302},
abstract={In most access control systems, authorization is specified using binary decisions, "yes" or "no," to the access requests resulting in access being permitted or denied respectively. We argue that emerging Internet applications require that this binary decision be extended to "allow access provided some actions are taken. " We propose the notion of provisional actions that specifies the necessary actions to be performed in addition to the binary decision and introduce an access control model for it. We also provide an administrative model for policy management purpose.},
keywords={},
doi={},
ISSN={},
month={January},}
Copy
TY - JOUR
TI - Access Control Model with Provisional Actions
T2 - IEICE TRANSACTIONS on Fundamentals
SP - 295
EP - 302
AU - Michiharu KUDO
AU - Satoshi HADA
PY - 2001
DO -
JO - IEICE TRANSACTIONS on Fundamentals
SN -
VL - E84-A
IS - 1
JA - IEICE TRANSACTIONS on Fundamentals
Y1 - January 2001
AB - In most access control systems, authorization is specified using binary decisions, "yes" or "no," to the access requests resulting in access being permitted or denied respectively. We argue that emerging Internet applications require that this binary decision be extended to "allow access provided some actions are taken. " We propose the notion of provisional actions that specifies the necessary actions to be performed in addition to the binary decision and introduce an access control model for it. We also provide an administrative model for policy management purpose.
ER -