Enforcing security properties in task-Based systems

Proceedings of ACM Symposium on Access Control Models and Technologies, SACMAT

Volumn , Issue , 2008, Pages 41-50

  Irwin, Keith ^a   Yu, Ting ^a   Winsborough, William H ^b  

^a NORTH CAROLINA STATE UNIVERSITY   (United States)

^b UNIVERSITY OF TEXAS AT SAN ANTONIO   (United States)

Author keywords

Policy; Security properties; Task based access control

Indexed keywords

GENERAL MODELS; POLICY; SECURITY PROPERTIES; SEQUENCE OF ACTIONS; TASK-BASED ACCESS CONTROL; TEMPORAL AVAILABILITIES;

SECURITY SYSTEMS;

ACCESS CONTROL;

EID: 57349200518     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/1377836.1377843     Document Type: Conference Paper

References (21)

1. Tanvir Ahmed and Anand R. Tripathi. Static verification of security requirements in role based cscw systems. In SACMAT '03: Proceedings of the eighth ACM symposium on Access control models and technologies, pages 196-203, New York, NY, USA, 2003. ACM Press.
2. Bowen Alpern and Fred B. Schneider. Recognizing safety and liveness. Distributed Computing, 2(3): 117-126, 1987.
3. L. Bauer, J. Ligatti, and D. Walker. More enforceable security policies, 2002.
4. Elisa Bertino, Piero Andrea Bonatti, and Elena Ferrari. Trbac: A temporal role-based access control model. ACM Trans. Inf. Syst. Secur., 4(3): 191-233, 2001.
5. Elisa Bertino, Elena Ferrari, and Vijay Atluri. The specification and enforcement of authorization constraints in workflow management systems. ACM Transactions on Information and System Security, 2(1):65-104, February 1999.
6. Daniel J. Dougherty, Kathi Fisler, and Shriram Krishnamurthi. Specifying and reasoning about dynamic access-control policies. In IJCAR, pages 632-646, 2006.
7. Steven T. Eckmann, Giovanni Vigna, and Richard A. Kemmerer. Statl: an attack language for state-based intrusion detection. J. Comput. Secur., 10(1-2):71-103, 2002.
8. Kathi Fisler, Shriram Krishnamurthi, Leo A. Meyerovich, and Michael Carl Tschantz. Verification and change-impact analysis of access-control policies. In ICSE '05: Proceedings of the 27th international conference on Software engineering, pages 196-205, 2005.
9. Jeremy Frank and Matt Bishop. Extending the take-grant protection system. Technical Report Technical Report, Department of Computer Science, University of California at Davis, 1996.
10. Michael A. Harrison, Walter L. Ruzzo, and Jeffrey D. Ullman. Protection in operating systems. Communications of the ACM, 19(8):461-471, August 1976.
11. Anita K. Jones, Richard J. Lipton, and Lawrence Snyder. A linear time algorithm for deciding security. In 17th Annual IEEE Symposium on Foundations of Computer Science (FOCS), pages 33-41, October 1976.
12. Ninghui Li, William H. Winsborough, and John C. Mitchell. Beyond proof-of-compliance: Safety and availability analysis in trust management. In Proceedings of IEEE Symposium on Security and Privacy, pages 123-139. IEEE Computer Society Press, May 2003.
13. Fabio Martinelli, Paolo Mori, and Anna Vaccarelli. Towards continuous usage control on grid computational services. icas-icns, 0:82, 2005.
14. Ravi S. Sandhu. The typed access matrix model. In SP '92: Proceedings of the 1992 IEEE Symposium on Security and Privacy, page 122, Washington, DC, USA, 1992. IEEE Computer Society.
15. Andreas Schaad, Volkmar Lotz, and Karsten Sohr. A model-checking approach to analysing organisational controls in a loan origination process. In SACMAT '06: Proceedings of the eleventh ACM symposium on Access control models and technologies, pages 139-149, New York, NY, USA, 2006. ACM Press.
16. Andreas Schaad, Pascal Spadone, and Helmut Weischsel. A Case Study of Separation of Duty Properties in The Context of the Austrian "eLaw" Process. In Proceedings of the 20th Annual ACM Symposium on Applied Computing (SAC'05), Santa Fe, Nex Mexico, March 2005.
17. Fred B. Schneider. Enforceable security policies. ACM Trans. Inf. Syst. Secur., 3(1):30-50, 2000.
18. R. Sekar, V. Venkatakrishnan, S. Basu, S. Bhatkar, and D. DuVarney. Model-carrying code: A practical approach for safe execution of untrusted applications, 2003.
19. R. K. Thomas and R. S. Sandhu. Towards a task-based paradigm for flexible and adaptable access control in distributed applications. In NSPW '92-93: Proceedings on the 1992-1993 workshop on New security paradigms, pages 138-142, New York, NY, USA, 1993. ACM Press.
20. Roshan K. Thomas and Ravi S. Sandhu. Task-based authorization controls (tbac): A family of models for active and enterprise-oriented autorization management. In Proceedings of the IFIP TC11 WG11.3 Eleventh International Conference on Database Securty XI, pages 166-181, London, UK, UK, 1998. Chapman & Hall, Ltd.
21. Qihua Wang and Ninghui Li. Direct static enforcement of high-level security policies. In ASIACCS '07: Proceedings of the 2nd ACM symposium on Information, computer and communications security, pages 214-225, New York, NY, USA, 2007. ACM Press.