Policy decomposition for collaborative access control

Proceedings of ACM Symposium on Access Control Models and Technologies, SACMAT

Volumn , Issue , 2008, Pages 103-112

  Lin, Dan ^a   Rao, Prathima ^a   Bertino, Elisa ^a   Li, Ninghui ^a   Lobo, Jorge ^b  

^a PURDUE UNIVERSITY   (United States)

^b IBM T J WATSON RESEARCH CENTER   (United States)

Author keywords

Collaborative access control; Policy decomposition

Indexed keywords

ACCESS CONTROL DECISIONS; ACCESS CONTROL MODELS; ACCESS CONTROL SYSTEMS; CHAIN ARRANGEMENTS; COLLABORATIVE ACCESS CONTROL; COLLABORATIVE ACCESSES; COLLABORATIVE ACTIVITIES; COLLABORATIVE APPLICATIONS; GLOBAL POLICIES; GOVERNMENT AGENCIES; POLICY DECOMPOSITION; REFERENCE ARCHITECTURES;

ACCESS CONTROL; DECOMPOSITION; SECURITY SYSTEMS; SUPPLY CHAINS;

CONTROL SYSTEMS;

EID: 57349171335     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/1377836.1377853     Document Type: Conference Paper

References (16)

1. Parthenon XACML evaluation engine, http;//www.parihenoncomputing.com/ xacrnl-toolkit.html.
2. Sun's XACML open source implementation. http://sunxacrnl.sourceforge. net
3. Extensible access control markup language (XACML) version 2.0. OASIS Standard, 2005.
4. A. Anderson. Evaluating XACML as a policy language. Technical report, OASIS, 2003.
5. A. K. Bandara, E. C. Lupu, J. Moffett, and A. Russo. A goal-based approach to policy refinement. In Proc. of Inter-Workshop on Policies for Distributed System and Network, page 229, 2004.
6. E. Cohen, R. K. Thomas, W. Winsborough, and D. Shands. Models for coalition-based access control. In Proc. of SACMAT, pages 97-106, 2002.
7. W. K. Edwards. Policies and roles in collaborative applications. In Proc. of ACM conference on computer supported cooperative work, pages 11-20. 1996.
8. K. Fisler, S. Krishnamurthi, L. A. Meyerovich, and M. C. Tschantz. Verification and change-impact analysis of access-control policies. In Proc. of Inter. Conf. on Software Engineering, pages 196-205, 2005.
9. K. Frikken, M. Atallah, and J. Li. Attribute-based access control with hidden policies and hidden credentials, IEEE Transaction on Computers, 55(10):1259-1270, 2006.
10. J. Jin and G. Ahn. Role-based access management for ad-hoc collaborative sharing. In Proc. of ACM symposium on Access control models and technologies, pages 200-209, 2006.
11. N. Li, W. Du, and D. Boneh. Oblivious signature-based envelope. In In Proc. of ACM Symposium on Principles of Distributed Computing, 2003.
12. M. Lorch, D. B. Adams, D. Kafura, M. S. R. Koneni, A. Rathi, and S. Shah. The prima system for privilege management, authorization and enforcement in grid environments. In Proc. of International Workshop on Grid Computing, page 109, 2003.
13. M. Lorch, S. Proctor, R. Lcpro, D. Kafura, and S. Shah. First experiences using XACML for access control in distributed systems. In Proc. of ACM workshop on XML security, pages 25-37, 2003.
14. L. Pearlman, V. Welch, I. Foster, C. Kesselman, and S. Tuecke. A community authorization service for group collaboration. In Proc. of Workshop on Policies for Distributed Systems and Networks, pages 50-59, 2002.
15. L. Su, D. W. Chadwick, A. Basden, and J. A. Cunningham. Automated decomposition of access control policies. In Proc. of International Workshop on Policies for Distributed Systems and Networks, pages 3-13, 2005.
16. M. Thompson, A. Essiari, and S. Mudumbai. Certificate-based authorization policy in a pki environment. ACM Trans. Inf. Syst. Secur., 6(4):566-588, 2003.