Supporting access control policies across multiple operating systems

Proceedings of the Annual Southeast Conference

Volumn 2, Issue , 2005, Pages 2288-2293

  Teo, Lawrence ^a,b   Ahn, Gail Joon ^a  

^a UNIVERSITY OF NORTH CAROLINA AT CHARLOTTE   (United States)

^b Calyptix Security Corporation   (United States)

Author keywords

Access control; Chameleos; Extensibility; Flexibility; Operating systems; Policy specification

Indexed keywords

ACCESS CONTROL POLICIES; BEST FIT; CHAMELEOS; COMMON CRITERIA; COMPLEX SYSTEMS; IT SECURITY; LARGE ORGANIZATIONS; MULTIPLE OPERATING SYSTEMS; OPERATING SYSTEMS; POLICY SPECIFICATION LANGUAGES; SECURITY POLICY; SECURITY RISKS;

COMPUTER OPERATING SYSTEMS; MACHINERY; NETWORK SECURITY; SECURITY SYSTEMS; SPECIFICATION LANGUAGES; SPECIFICATIONS;

ACCESS CONTROL;

EID: 34748827641     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/1167253.1167317     Document Type: Conference Paper

References (17)

1. E. Bertino, B. Catania, E. Ferrari, and P. Perlasca. A logical framework for reasoning about access control models. In Proceedings of the 6th ACM Symposium on Access Control Models and Technologies, pages 41-52, Chantilly, VA, 2001.
2. W. Boebert and R. Kain. A practical alternative to hierarchical integrity policies. In Proceedings of the 8th National Computer Security Conference, 1985.
3. T. Jaeger. On the increasing importance of constraints. In Proceedings of the 4th ACM Workshop on Role-Based Access Control, pages 33-42, Fairfax, VA, October 1999.
4. T. Jaeger, A. Edwards, and X. Zhang. Managing access control policies using access control spaces. In Proceedings of the 7th ACM Symposium on Access Control Models and Technologies, pages 3-12, Monterey, CA, June 2002.
5. T. Jaeger, R. Sailer, and X. Zhang. Resolving constraint conflicts (to appear). In Proceedings of the 9th ACM Symposium on Access Control Models and Technologies (SACMAT 2004), IBM T.J. Watson Research Center, Yorktown Heights, NY, June 2004.
6. S. Jajodia, P. Samarati, and V. Subrahmanian. A logical language for expressing authorizations. In Proceedings of the IEEE Symposium on Security and Privacy, pages 31-42, Oakland, CA, May 1997.
7. S. Jajodia, P. Samarati, V. Subrahmanian, and E. Bertino. A unified framework for enforcing multiple access control policies. In Proceedings of the ACM SIGMOD International Conference on Management of Data, pages 474-485, May 1997.
8. G. Karjoth and M. Schunter. A privacy policy model for enterprises. In Proceedings of the 15th IEEE Computer Security Foundations Workshop, Nova Scotia, Canada, June 2002. IEEE Computer Society Press.
9. P. Loscocco and S. Smalley. Integrating flexible support for security policies into the Linux operating system. In Proceedings of the FREENIX Track: 2001 USENIX Annual Technical Conference (FREENIX '01), June 2001.
10. NSA. Security-Enhanced Linux. http://www.nsa.gov/selinux/.
11. OASIS. OASIS eXtensible Access Control Markup Language TC. http://www.oasisopen.org/committees/tchome.php?wgabbrev=xacml.
12. N. Provos. Improving host security with system call policies. In Proceedings of the 12th USENIX Security Symposium, Washington, DC, August 2003.
13. C. Rippert. Protection in flexible operating system architectures. ACM SIGOPS Operating Systems Review, 37(4):8-18, October 2003.
14. B. Spengler. grsecurity. http://www.grsecurity.net/.
15. L. Teo and G.-J. Ahn. Towards effective security policy management for large and heterogeneous environments. Technical Report UNCC-SIS-06, UNC Charlotte, Spring 2005.
16. L. Teo and G.-J. Ahn. Towards the specification of access control policies on multiple operating systems. In Proceedings of the 5th IEEE Workshop on Information Assurance, pages 210-217, United States Military Academy, West Point, NY, June 2004.
17. H. F. Wedde and M. Lischka. Modular authorization. In Proceedings of the 6th ACM Symposium on Access Control Models and Technologies, pages 97-105, Chantilly, VA, 2001.