Security property based administrative controls

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 3193, Issue , 2004, Pages 244-259

  Solworth, Jon A ^a   Sloan, Robert H ^a  

^a University of Illinois at Chicago   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

ACCESS CONTROL LANGUAGE; ACCESS CONTROL MODELS; ADMINISTRATIVE CONTROLS; CURRENT CONFIGURATION; FIRST ORDER; GRAPH REWRITING RULES; INFORMATION FLOWS; PREDICATE LOGIC; PROPERTY-BASED; SECURITY PROPERTIES;

ACCESS CONTROL MODELS;

EID: 35048896610     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/978-3-540-30108-0_15     Document Type: Article

References (21)

1. Denning, D.E.: A lattice model of secure information flow. Communications of the ACM 19 (1976) 236-243
2. Boebert, W.E., Kain, R.: A practical alternative to hierarchical integrity policies. In: 8th National Computer Security Conference, Gaithersburg, MD (1985) 18-27
3. O'Brien, R., Rogers, C.: Developing applications on LOCK. In: Proc. 14th NIST-NCSC National Computer Security Conference. (1991) 147-156
4. Bell, D.E., LaPadula, L.J.: Secure computer systems: Mathematical foundations and model. Technical Report M74-244, Mitre Corporation, Bedford MA (1973)
5. Biba, K.: Integrity considerations for secure computer systems. Technical Report TR-3153, MITRE Corp, Bedford, MA (1977)
6. Harrison, M.A., Ruzzo, W.L., Ullman, J.D.: On protection in operating system. In: Symposium on Operating Systems Principles. (1975) 14-24
7. Sandhu, R.S.: The typed access matrix model. In: Proceedings of the IEEE Symposium on Security and Privacy. (1992) 122-136
8. Soshi, M.: Safety analysis of the dynamic-typed access matrix model. In Cuppens, F., Deswarte, Y., Gollmann, D., Waidner, M., eds.: 6th European Symposium on Research in Computer Security (ESORICS 2000). Volume 1895 of Lecture Notes in Computer Science., Toulouse, France, Springer-Verlag (2000) 106-121
9. Bishop, M., Snyder, L.: The transfer of information and authority in a protection system. In: Proceedings of the seventh ACM symposium on Operating systems principles, ACM Press (1979) 45-54
10. Sandhu, R.S., Coyne, E.J., Feinstein, H.L., Youman, C.E.: Role-based access control models. IEEE Computer 29 (1996) 38-47
11. Sandhu, R., Bhamidipati, V., Munawer, Q.: The ARBAC97 model for role-based administration of roles. ACM Transactions on Information and System Security 2 (1999) 105-135
12. Munawer, Q., Sandhu, R.: Simulation of the augmented typed access matrix model (ATAM) using roles. In: INFOSECU99: International Conference on Information Security. (1999)
13. Crampton, J.: Authorizations and Antichians. PhD thesis, Birkbeck College, Univ. of London, UK (2002)
14. Tidswell, J.F., Jaeger, T.: Integrated constraints and inheritance in DTAC. In: Proceedings of the 5th ACM Workshop on Role-Based Access Control (RBAC-00), N.Y., ACM Press (2000) 93-102
15. Tidswell, J., Jaeger, T.: An access control model for simplifying constraint expression. In Jajodia, S., Samarati, P., eds.: Proceedings of the 7th ACM Conference on Computer and Communications Security (CCS-00), N.Y., ACM Press (2000) 154-163
16. Jaeger, T., Tidswell, J.E.: Practical safety in flexible access control models. ACM Transactions on Information and System Security (TISSEC) 4 (2001) 158-190
17. Koch, M., Mancini, L.V., Parisi-Presicce, F.: A graph-based formalism for RBAC. ACM Transactions on Information and System Security (TISSEC) 5 (2002) 332-365
18. Koch, Mancini, Parisi-Presicce: Decidability of safety in graph-based models for access control. In: ESORICS: European Symposium on Research in Computer Security, LNCS, Springer-Verlag (2002) 229-243
19. Solworth, J.A., Sloan, R.H.: A layered design of discretionary access controls with decidable properties. In: Security and Privacy 2004, IEEE (2004) 56-67
20. Solworth, J.A., Sloan, R.H.: Decidable administrative controls of security properties (2004) submitted for publication.
21. Foley, S., Gong, L., Qian, X.: A security model of dynamic labeling providing a tiered approach to verification. In: IEEE Symposium on Security and Privacy, Oakland, California, IEEE Computer Society Press (1996) 142-154