Managing access control policies using access control spaces

Proceedings of ACM Symposium on Access Control Models and Technologies (SACMAT 2002)

Volumn , Issue , 2002, Pages 3-12

  Jaeger, Trent ^a   Edwards, Antony ^a   Zhang, Xiaolan ^a  

^a IBM T J WATSON RESEARCH CENTER   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

COMPUTER PROGRAMMING LANGUAGES; MANAGEMENT INFORMATION SYSTEMS; SECURITY OF DATA; SEMANTICS; SERVERS;

ACCESS CONTROL POLICY; ACCESS CONTROL SPACES; WEB SERVER POLICY;

COMPUTER AIDED SOFTWARE ENGINEERING;

EID: 0242540396     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/507711.507713     Document Type: Conference Paper

References (16)

1. G.-J. Ahn and R.Sandhu. Role-based authorization constraints specification. ACM Transactions on Information and System Security (TISSEC), 3(4), Nov 2000.
2. L. Badger, D. F. Sterne, D. L. Sherman, K. M. Walker, and S. A. Haghighat. A Domain and Type Enforcement UNIX Prototype. In Proceedings of the 1995 USENIX Security Symposium, 1995. Also available from TIS online archives.
3. D. Bell and L. La Padula. Secure Computer Systems: Mathematical Foundations (Volume 1). Technical Report ESD-TR-73-278, Mitre Corporation, 1973.
4. K. J. Biba. Integrity considerations for secure computer systems. Technical Report MTR-3153, Mitre Corporation, Mitre Corp, Bedford MA, June 1975.
5. W. E. Boebert and R. Y. Kain. A Practical Alternative to Hierarchical Integrity Policies. In Proceedings of the 8th National Computer Security Conference, Gaithersburg, Maryland, 1985.
6. S. Chari and P.-C. Cheng. BlueBox: A policy-driven, host-based intrusion detection system. In Proceedings of the 2002 Network and Distributed Systems Security Symposium, San Diego, CA, 2002.
7. J. Crowley. Re: Security Policy Analysis. SELinux mailing list 10/10/2001, 2001.
8. E. Ferrari and B. Thuraisingham. Secure database systems. In O. Diaz and M. Piattini, editors, Advanced Databases: Technology and Design, 2000.
9. M. A. Harrison, W. L. Ruzzo, and J. D. Ullman. Protection in operating systems. Communications of the ACM, 19(8), August 1976.
10. T. Jaeger. Managing access control complexity using metrics. In Proceedings of the 6th ACM Symposium on Access Control Models and Technologies, May 2001.
11. T. Jaeger and J. E. Tidswell. Practical safety in flexible access control models. ACM Transactions on Information and System Security (TISSEC), 4(2), May 2001.
12. J. J. Longstaff, M. A. Lockyer, G. Capper, and M. G. Thick. A model of accountability, confidentiality, and override for healthcare and other applications. In Proceedings of 5th ACM Workshop on Role-Based Access Control, July 2000.
13. MITRE Corporation. Apache policy for SELinux. SELinux distribution file policy/domains/system/apache.te, 2002.
14. National Security Agency. Security-Enhanced Linux (SELinux). http://www.nsa.gov/selinux, 2001.
15. R. S. Sandhu, E. Coyne, H. L. Feinstein, and C. E. Youman. Role-Based Access Control Models. IEEE Computer, 29(2):38-47, February 1996.
16. Tresys Technology. Security-Enhanced Linux research. www.tresys.com/selinux.html, 2001.