Nomad: A security model with non atomic actions and deadlines

Proceedings of the Computer Security Foundations Workshop

Volumn , Issue , 2005, Pages 186-196

  Cuppens, Frédéric ^a   Cuppens Boulahia, Nora ^a   Sans, Thierry ^a  

^a ECOLE DES MINES DE NANTES   (France)

Author keywords

[No Author keywords available]

Indexed keywords

ACCESS CONTROL MECHANISMS; ATOMIC ACTIONS; SECURITY MODELS; SECURITY POLICIES;

AVAILABILITY; COMPUTER CRIME; MATHEMATICAL MODELS; SECURITY SYSTEMS;

SECURITY OF DATA;

EID: 28144457207     PISSN: 10636900     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/CSFW.2005.20     Document Type: Conference Paper

References (22)

1. V. Atluri and W.-K. Huang. A Petri Net Based Safety Analysis of Workflow Authorization Models. Journal of Computer Security, 8(2), 2000.
2. P. Balbiani. Constitution et développement d'une logique de modalités aléthiques, déontiques, dynamiques, et temporelles en vue de la formalisation du raisonnement sur les actions et sur les normes. In Troisièmes Journées Francophones - Modèles Formels de l'Interaction (MFI-05), may 2005.
3. D. E. Bell and L. J. LaPadula. Secure computer systems: Unified exposition and multics interpretation. Number ESD-TR-73-306, March 1976.
4. E. Bertino, B. Catania, E. Ferrari, and P. Perlasca. A Logical Framework for Reasoning about Access Control Models. ACM Transactions on Information and System Security, 6(1), February 2003.
5. E. Bertino, E. Ferrari, and V. Atluri. An Approach for the Specification and Enforcement of Authorization Constraints in Workflow Management Systems. ACM Transactions on Information Systems Security, 1(1), February 1999.
6. C. Bettini, S. Jajodia, X. S. Wang, and D. Wijesekera. Obligation Monitoring in Policy Management. In International Workshop, Policies for Distributed Systems and Neworks (Policy 2002), Monterey CA, June 5-7 2002.
7. D. Brewer and M. Nash. The Chinese wall security policy. In IEEE Symposium on Security and Privacy, Oakland, 1989.
8. J. Broersen, F. Dignum, V. Dignum, and J.-J. Meyer. Designing a Deontic Logic of Deadlines. In Seventh International Workshop on Deontic Logic in Computer Science, 2004.
9. L. Cholvy and F. Cuppens. Analyzing Consistency of Security Policies. In IEEE Symposium on Security and Privacy, Oakland, CA, May 1997.
10. F. Cuppens and N. Cuppens-Boulahia. High level conflict management strategies in advanced access control models. 2005. Submitted to CSFW'05.
11. E. Emerson. Temporal and modal logic. In J. van Leeuwen, editor, Handbook of Theoretical Computer Science, volume B: Formal Models and Semantics. Elsevier Science, 1990.
12. K. Fine. Advanced Logic. Chapter 6: Completeness, http://www.nyu.edu/ gsas/dept/philo/courses/advlogic/, 2001.
13. M. A. Harrison, W. L. Ruzzo, and J. D. Ullman. Protection in Operating Systems. Communication of the ACM, 19(8):461-471, August 1976.
14. S. Jajodia, S. Samarati, and V. S. Subrahmanian. A logical Language for Expressing Authorizations. In IEEE Symposium on Security and Privacy, Oakland, CA, May 1997.
15. A. A. E. Kalam, R. E. Baida, P. Balbiani, S. Benferhat, F. Cuppens, Y. Deswarte, A. Miège, C. Saurel, and G. Trouessin. Organization Based Access Control. In Proceedings of IEEE 4th International Workshop on Policies for Distributed Systems and Networks (POLICY 2003), Lake Come, Italy, June 2003.
16. K. Larsen and P. Pettersson. Timed and Hybrid Systems in Uppaal2k. In MOVEP'2k, June 2000.
17. J.-J. Meyer. A different approach to deontic logic: deontic logic viewed as a variant of dynamic logic. Notre Dame Journal of Formal Logic, 29(1): 109-136, 1988.
18. J.-J. Meyer and R. Wieringa, editors. Proc. of First International Workshop on Deontic Logic in Computer Science, Amsterdam, The Netherlands, 1992.
19. H. Prakken and M. Sergot. Contrary-to-Duty Imperatives, Defeasibility and Violability. In A. J. I. Jones and M. Sergot, editors. Second International Workshop on Deontic Logic in Computer Science, Oslo, Norway, 1994.
20. R. Sandhu, E. J. Coyne, H. L. Feinstein, and C. E. Youman. Role-based access control models. IEEE Computer, 29(2):38-47, 1996.
21. R. Thomas and R. Sandhu. Task-based Authorization Controls (TBAC): A Family of Models for Active and Enterprise-oriented Authorization Management. In 11 th IFIP Working Conference on Database Security, Lake Tahoe. California, USA, 1997.
22. C. Yu and V. Gligor. A specification and verification method for preventing denial of service. IEEE Transactions on Software Engineering, 16(6):581-592, June 1990.