An algebra for enterprise privacy policies closed under composition and conjunction

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 3995 LNCS, Issue , 2006, Pages 130-144

  Raub, Dominik ^a   Steinwandt, Rainer ^b  

^a ETH ZURICH   (Switzerland)

^b FLORIDA ATLANTIC UNIVERSITY   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

COMPUTER PROGRAMMING LANGUAGES; INDUSTRIAL ECONOMICS; PROBLEM SOLVING; PUBLIC POLICY; SPECIFICATIONS;

ALGEBRAIC PROPERTIES; ENTERPRISE PRIVACY POLICIES; NOVEL ALGEBRAIC PRIVACY SPECIFICATION (NAPS); PRIVACY-SENSITIVE DATA;

DATA PRIVACY;

EID: 33746637552     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/11766155_10     Document Type: Conference Paper

References (27)

1. P. Ashley et al. E-P3P privacy policies and privacy authorization. In WPES-02, pp. 103-109, ACM Press, 2002.
2. M. Backes et al. Efficient Comparison of Enterprise Priv. Policies. In SAC'04, pp. 375-382. ACM Press, 2004.
3. M. Backes et al. Unification in Priv. Policy Evaluation - Translating EPAL into Prolog. In POLICY'04. IEEE Comp. Soc., 2004.
4. M. Backes et al. An Algebra for Composing Enterprise Priv. Policies. In ESORICS 2004, vol. 3193 of LNCS, pp. 33-52. Springer, 2004.
5. M. Backes et al. A Toolkit for Managing Enterprise Priv. Policies. In ESORICS 2003, vol. 2808 of LNCS, pp. 162-180. Springer, 2003.
6. C. Bettini et al. Obligation monitoring in policy management. In POLICY 2002, pp. 2-12, 2002.
7. G. Birkhoff. Lattice Theory, vol. 25 of AMS. Colloquium Publications. AMS, Providence, Rhode Island, 1973.
8. P. A. Bonatti et al. A Component-Based Architecture for Secure Data Publication. In ACSAC 2001, pp. 309-318, 2001.
9. P. A. Bonatti et al. A modular approach to composing access control policies. In CCS-00, pp. 164-173, ACM Press, 2000.
10. P. A. Bonatti et al. An algebra for composing access control policies. ACM Trans. on Inf. and Syst. Sec., 5(1):1-35, Feb. 2002.
11. S. D. C. di Vimercati and P. Samarati. An authorization model for federated systems. In ESORICS 1996, vol. 1146 of LNCS, pp. 99-117. Springer, 1996.
12. Z. Fu et al. IPSec/VPN security policy: Correctness, conflict detection and resolution. In IEEE Policy 2001, vol. 1995 of LNCS, pp. 39-56. Springer, 2001.
13. J. H. Gallier. Logic for Comp. Science: Found, of Automatic Theorem Proving, Ch. 2.5 and 10, pp. 448-456, 483-488. John Wiley & Sons, 1986, http://www.cis.upenn.edu/~jean/gbooks/logic.html.
14. V. D. Gligor et al. On the Formal Definition of Separation-of-Duty Policies and their Composition. In Proc. 19th IEEE Symp. on Sec. & Priv., pp. 172-183, 1998.
15. S. Jajodia et al. Provisional authorization. In Proc. of the E-commerce Sec. and Priv., pp. 133-159. Kluwer Academic Publishers, 2001.
16. S. Jajodia et al. Flexible support for multiple access control policies. ACM Trans, on Database Syst., 26(2):214-260, June 2001.
17. G. Karjoth et al. The platform for enterprise privacy practices - privacy-enabled management of customer data. In CSFW 2002, vol. 2482 of LNCS, pp. 69-84. Springer, 2002.
18. J. Łukasiewicz. Philosophische Bemerkungen zu mehrwertigen Systemen des Aussagenkalküls. C. R. Soc. Sc. Varsovie, 23:51-77, 1931.
19. J. D. Moffett and M. S. Sloman. Policy hierarchies for distributed systems management. IEEE JSAC Special Issue on Network Manag., 11(9):1404-1414, 1993.
20. D. Raub and R. Steinwandt. An Algebra for Enterprise Privacy Policies Closed Under Composition and Conjunction. Full Version, 2006, http://www.crypto.ethz.ch/~raub/publications.html.
21. C. N. Ribeiro et al. SPL: An access control language for security policies and complex constraints. In NDSS 2001, pp. 89-107, Internet Soc., 2001, http://www.gsd.inesc-id.pt/~avz/pubs/SPL.pdf.
22. P. H. Schmitt. Nichtklassische Logiken. Script, Universität Karlsruhe, 2004, http://i12www.ira.uka.de/studium.htra
23. R. T. Simon and M. E. Zurko. Separation of Duty in Role-based Environments. In CSFW 1997, pp. 183-194, 1997.
24. D. Wijesekera and S. Jajodia. Policy algebras for access control: the propositional case. In CCS 2001, pp. 38-47, ACM Press, 2001.
25. D. Wijesekera and S. Jajodia. A propositional policy algebra for access control. ACM Trans. on Inf. and Syst. Sec., 6(2):286-325, 2003.
26. Semilattice. Wikipedia, the free encyclopedia, http://en.wikipedia.org/wiki/Semilattice.
27. eXtensible Access Control Markup Language (XACML). OASIS Committee Specification 1.0, Dec. 2002, http://www.oasis-open.org/committees/xacml.