Usage Control: A Vision for Next Generation Access Control

Date Added: Jan 2011
Format: PDF

The term Usage Control (UCON) is a generalization of access control to cover obligations, conditions, continuity (Ongoing controls) and mutability. Traditionally, access control has dealt only with authorization decisions on a subject's access to target resources. Obligations are requirements that have to be fulfilled by the subject for allowing access. Conditions are subject and object-independent environmental requirements that have to be satisfied for access. In today's highly dynamic, distributed environment, obligations and conditions are also crucial decision factors for richer and finer controls on usage of digital resources.