Description Logics-based access control management

Abstract

The traditional role-based access control mechanism controls the user to access the resources based on the roles, simplifying security management. However, it cannot effectively provide semantic understanding and reasoning due to lack formal mechanisms. A new Description Logics-based access control model is presented, it applies Description Logics to realize a formal description of the relationship between the connected user and the controlled object, and does ontology reason, to realize the formal express for access control policy.