Application of security policy to role-based access control and the common data security architecture

Computer Communications

Volumn 23, Issue 17, 2000, Pages 1584-1593

  Lin, A ^a   Brown, R ^a  

^a HEWLETT PACKARD LABORATORIES   (United Kingdom)

Author keywords

[No Author keywords available]

Indexed keywords

COMPUTER ARCHITECTURE; DATA PRIVACY; INFORMATION MANAGEMENT;

AUTHORIZATION; COMMON DATA SECURITY ARCHITECTURES; ROLE-BASED ACCESS CONTROL;

SECURITY OF DATA;

EID: 0034318674     PISSN: 01403664     EISSN: None     Source Type: Journal    
DOI: 10.1016/S0140-3664(00)00244-9     Document Type: Article

References (19)

1. R. Anderson, A security policy model for clinical information systems, in: Proceedings of the 17th IEEE Symposium on Security and Privacy, 1996, pp. 30-43.
2. R.W. Baldwin, Naming and grouping privileges to simplify security management in large databases, in: Proceedings of the IEEE Symposium on Computer Security and Privacy, 1990, pp. 116-132.
3. J. Barkley, Implementing role based access control using object technology, First ACM/NIST Workshop on Role-Based Access Control, 1995 (http://hissa.ncsl.nist.gov/rbac/rbacot/titlewkshp.html).
4. Blaze M., Feigenbaum J., Ioannidis J., Keromytis A. The role of trust management in distributed system security. Vitek, Jensen. Secure Internet Programming: Security Issues for Mobile and Distributed Objects. 1999;185-210 Springer, Berlin. (ftp://ftp.research.att.com/dist/mab/trustmgt.ps).
5. M. Blaze, J. Feigenbaum, A. Keromytis, KeyNote: trust management for public key infrastructures, in: Proceedings of the 6th International Workshop on Security Protocols, 1998, pp. 59-63.
6. M. Blaze, J. Feigenbaum, J. Lacy, Decentralized trust management, in: Proceedings of the 17th IEEE Symposium on Security and Privacy, 1996, pp. 164-173 (ftp://ftp.research.att.com/dist/mab/policymaker.ps).
7. Chu Y., Feigenbaum J., LaMacchia B., Resnick P., Strauss M. REFEREE: trust management for web applications. Journal of World Wide Web. 2:1997;127-139. (http://www.w3.org/PICS/TrustMgt/doc/referee-WWW6.html).
8. Common Data Security Architecture (CDSA) (http://developer.intel.com/ial/security/).
9. D.F. Ferraiolo, J.A. Cugini, D.R. Kuhn, Role-based access control (RBAC): features and motivations, in: Proceedings of 11th Annual Computer Security Applications Conference, 1995, pp. 241-248 (http://hissa.ncsl.nist.gov/rbac/newspaper/rbac.html).
10. D.F. Ferraiolo, D.R. Kuhn, Role-based access control, in: Proceedings of the 15th NIST-NSA Nat. (U.S.) Computer Security Conference, 1992, pp. 554-563.
11. L. Giuri, P. Iglio, A formal model for role based access control with constraints, in: Proceedings of the Computer Security Foundations Workshop, 1996, pp. 136-145.
12. A. Herzberg, Y. Mass, J. Mihaeli, D. Naor, Y. Ravid, Access control meets public key infrastructure, or: assigning roles to strangers (http://www.hrl.il.ibm.com/TrustEstablishment/paper.htm).
13. W. Johnston, S. Mudumbai, M. Thompson, Authorization and attribute certificates for widely distributed access control, in: Proceedings of the IEEE 7th International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises (WETICE-98), 1998, pp. 340-345.
14. N. Li, J. Feigenbaum, B. Grosof, A logic-based knowledge representation for authorization with delegation, in: Proceedings of the 12th IEEE Computer Security Foundations Workshop, 1999, pp. 162-174.
15. F. Massacci, Reasoning about security: a logic and a decision method for role based access control, in: Proceedings of the International Joint Conference on Qualitative and Quantitative Practical Reasoning (ECSQARU/FAPR-97), Lecture Notes in Artificial Intelligence, vol 1244, 1997, pp. 421-435.
16. Sandhu R., Coyne E., Feinstein H., Youman C. Role-based access control models. IEEE Computer. 29:(2):1996;38-47.
17. K.E. Seamons, W. Winsborough, M. Winslett, Internet credential acceptance policies, in: Proceedings of the Workshop on Logic Programming for Internet Applications, July 1997 (http://www.transarc.com/~winsboro/papers/CAP.html).
18. Sloman M. Policy driven management for distributed systems. Journal of Network and Systems Management. 2:(4):1994;333-360.
19. Winslett M., Ching N., Jones V., Slepchin I. Using digital credentials on the world-wide web. Journal of Computer Security. 5:(3):1997;255-267. (http://drl.cs.uiuc.edu/pubs/jcs97.ps).