Spatial Information Research

Korea Spatial Information Society (대한공간정보학회)
권호 표지
DOI QR코드

DOI QR Code

Design and Implementation of an Access Control System Based on GeoXACML

GeoXACML 기반의 접근 제어 시스템 설계 및 구현

  • Ban, Hyun O (Dept. of Computer Science and Engineering, Konkuk University) ;
  • Shin, In Su (Dept. of Computer Science and Engineering, Konkuk University) ;
  • Kim, Jeong Joon (Dept. of Computer Science and Engineering, Konkuk University) ;
  • Han, Ki Joon (Dept. of Computer Science and Engineering, Konkuk University)
  • Received : 2013.01.02
  • Accepted : 2013.07.25
  • Published : 2013.08.31
Download PDF
⟨ Previous Next ⟩

Abstract

Recently, as the spatial information and various multimedia are fused together, the demand for the high value-added spatial information contents and the necessity of technology for spatial information security are increasing. However, since the current security policy is being managed independently by each system, there is a problem with unreliable or costly to modify or revise the security policy. Such problems occur frequently in the process of coordination or integration of the spatial information management systems that are used in public institutions and private companies. Therefore, in this paper, the access control system that could provide an integrated security policy for many spatial platforms and systems with expandable grammar and semantics was designed and implemented based on GeoXACML proposed by OGC. As the GeoXACML-based access control system designed and implemented in this paper follows the international standard specifications, it provides high portability and interoperability. Finally, in this paper, the efficiency of the system was proved by applying it to a virtual scenario on the military area requiring the access control.

최근 공간정보와 다양한 멀티미디어 등이 융합되어감에 따라 고부가가치의 공간정보 콘텐츠에 대한 수요와 공간정보 보안을 위한 각종 기술의 필요성이 증대되고 있다. 그러나 현재의 보안 정책은 각각의 시스템에서 독립적으로 관리되고 있기 때문에 보안 정책의 수정에 많은 비용이 소요되거나 신뢰성이 떨어지는 문제점이 있으며, 국내외 공공기관 및 기업에서 사용되는 공간정보 관리 시스템에서도 시스템의 연계 및 통합 과정 중 이와 같은 문제점들이 빈번히 발생하고 있다. 따라서, 본 논문에서는 국제 표준화 기구인 OGC에서 제시한 GeoXACML을 기반으로 문법 및 의미의 확장이 용이하고 많은 공간 플랫폼 및 시스템에 대해 통합된 보안 정책을 제공할 수 있는 접근 제어 시스템을 설계 및 구현하였다. 본 논문에서 설계 및 구현한 GeoXACML 기반 접근 제어 시스템은 국제 표준 스펙을 따르기 때문에 높은 이식성과 함께 상호운용성을 제공한다. 마지막으로 본 논문에서는 본 시스템을 접근 권한이 요구되는 군사 지역에 대한 가상 시나리오에 적용해 봄으로써 그 효용성을 입증하였다.

Keywords

References

  1. CBDI-Forum, 2003, XACML Access Control Markup Language Ratified as OASIS Open Standard.
  2. JTS Topology Suite, http://www.vividsolutions.com/jts/jtshome.htm/.
  3. Kang, H. K; Shin, I. S; Kim, J. J; Han, K. J. 2010, MR-Tree: A Mapping-based R-Tree for Efficient Spatial Searching, Journal of KSIS, 18(4):109-120.
  4. Kim, J. H; Moon, K. Y. 2003, Trend of eXtensible Access Control Markup Language Based on XML, Korea Institute of Information Security & Cryptology, 13(4):68-73.
  5. Lorch, M.; Proctor, S; Lepro, R. 2003, First Experiences Using XACML for Access Control in Distributed Systems, Proceeding of ACM Workshop on XML Security, 25-37.
  6. Matheus, A. Access Control for Geo Web Services using GeoXACML, http://www.unibw.de/inf3/forschung/projects/opengissec/flyergeoxacml/.../down2/.
  7. Moses, T; Anderson, A; Proctor, S; Godik, S. 2003, XACML Profile for Web Service, OASIS TC Working Draft.
  8. OASIS, 2004, eXtensible Access Control Markup Language Version 2.0, http://www.oasis-open.org/specs/index.php#xacmlv2.0.
  9. Open Geospatial Consortium, 2007, GeoXACML Implementation Specification Version 1.0, http://www.opengeospatial.org/standards/geoxacml/.
  10. Open Geospatial Consortium, 2008, Geospatial eXtensible Access Control Markup Language (GeoXACML).
  11. Park, C. G; Park, H. H; Kang, H. K; Han, K. J. 2007, Development of an OpenGIS Spatial Interface based on Oracle, Journal of KSIS, 9(2):1-11.
  12. Sun Microsystems, 2006, Sun's XACML Implementation, http://sunxacml.sourceforge.net/.
  13. Technical Corporation, 2011, Functionality and Usage of GeoXACML Version 1.0.
  14. Tao, H. 2005, A XACML-based Access Control Model for Web Service, Proceeding of International Conference on Wireless Communications, Networking and Mobile Computing, 2:1140-1144.
  15. Telecommunications Technology Association, 2010, Geospatial Information Copyright Protection- Right Expression and Access Control: Functional Requirements.
  16. Yang, K. D; Lee, H. J. 2006, Design of Access Control for Web based Enterprise Application System Using XACML, Autumn workshop presentation file of Korean Institute of Information Scientists and Engineers, 33(2C):467-471.

Cited by

  1. A Novel Optimal Robotized Parking System Using Advanced Wireless Sensor Network vol.2021, pp.None, 2013, https://doi.org/10.1155/2021/2889504