Description Logic Framework for Access Control and Security in Object-Oriented Systems.

Integrating the RBAC model in object-oriented systems is a natural way to describe authorization policies. We extend the RBAC model for access control in object-oriented systems in the context of the Access Control List. In this paper, we discuss access control issues categorizing three cases: subject to object, inter-objects, and intra object. It may be desirable in some applications to have a fine-grained access control at the level of the individual attributes or the methods of an object. We also demonstrate how access control decisions are made using $\mathcal{ALCQ}$ language, a family member of description logics. [ABSTRACT FROM AUTHOR]