Integrity-OrBAC: An OrBAC enhancement that takes into account integrity

2013 8th International Conference on Intelligent Systems: Theories and Applications, SITA 2013

Volumn , Issue , 2013, Pages

  Abou El Kalam, A ^a   El Hassani, A A ^a   Ait Ouahman, A ^a  

^a CADI AYYAD UNIVERSITY   (Morocco)

Author keywords

access control models and policies; credibility; criticality; integrity levels; OrBAC

Indexed keywords

ACCESS CONTROL MODELS; CREDIBILITY; INTEGRITY LEVELS; ORBAC; ORBAC MODELS; SECURITY POLICY;

CRITICALITY (NUCLEAR FISSION);

INTELLIGENT SYSTEMS;

EID: 84883093962     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/SITA.2013.6560820     Document Type: Conference Paper

References (22)

1. B. Lampson : "Protection". 5th Princeton Symposium on Information Sciences and Systems, pages 437-443, March 197 1.
2. D. Bell, L. LaPadula : "Secure Computer Systems : Unified Exposition and Multics Interpretation". Technical Report ESD-TR-75-306, MTR-2997, MITRE, Bedford, Mass, 1975.
3. K. Biba : "Integrity Considerations for Secure Computer Systems", ESD-TR-76-372, ESD/AFSC, Hanscom AFB, Bedford, MA (Apr. 1977)
4. Y. Deswarte, 1. Me : "Securite des systemes d'information". Hermes Science Publications, 2006.
5. D. F. Ferraiolo, R. Sandhu, S. Gavrila, D. R Kuhn, R Chandramouli : "Proposed NIST Standard for Role-Based Access Control". ACM Transactions on Information and System Security, 4(3):222-274, AoCtt 200 1.
6. RK. Thomas : "TMAC: A primitive for Applying RBAC in collaborative environments". 2nd ACM, Workshop on RBAC, pages 13-19, Fairfax, Virginia, USA, 6-7 Novembre 1997.
7. RK. Thomas, R Sandhu : "Task-based Authorization Controls (TBAC): A Family of Models for Active and Enterprise-oriented Authorization Management". 1 1th IFIP Working Conference on Database Security, Lake Tahoe, California, USA, 1997.
8. R Sandhu, J. Park : "Usage Control: A Vision for Next Generation Access Control". MMM-ACNS 2003.
9. S. Benferhat, R EI Baida, F. Cuppens : "A Stratification-Based Approach for Handling Conflicts in Access Control". 8th ACM Symposium on Access Control Models and Technologies (SACMAT'03), Lake Come, Italy, June 2003.
10. A. Abou EI Kalam, R. EI Baida, P. Balbiani, S. Benferhat, F. Cuppens, Y. Deswarte, A. Miege, c. Saure, G. Trouessin : "Organization Based Access Control". 4th InternationalWorkshop on Policies for Distributed Systems and Networks (POLICY 2003), Lake Come, Italy, June 2003.
11. M. Krause, H. F. Tipton : "Handbook of Information Security Management". Auerbach Publications, 1998.
12. J. A. Goguen, J. Meseguer : "Security Policies and Security Models". sp, pp. ll, 1982 IEEE Symposium on Security and Privacy, 1982.
13. D. Clark, D. Wilson : "A Comparison of Commercial and Military Computer Security Policies". 1987 IEEE Symposium on Security and Privacy, IEEE, Oakland, CA, pp. 184-194, April 1987.
14. D. F. C. Brewer, M. J. Nash: "The Chinese Wall Security Policy". IEEE Symposium on Security and Privacy, Oakland, 1988, pp 206-214
15. E. Totel, J. P. Blanquart, Y. Deswarte, D. Powell : "Supporting mUltiple levels of criticality". 28th IEEE Fault Tolerant Computing Symposium, Munich, Germany, June 1998.
16. A. Abou EI Kalam, Y. Deswarte : "Critical infrastructures Security Modeling, enforcement and runtime checking". 3rd InternationalWorkshop, CRITIS 2008, Rome, Italy, Oct. 13-15,2008.
17. A. Abou EI Kalam, Y. Deswarte, A. Barna, M. Kaiiniche : "PolyOrBAC: A Security Framework for Critical Infrastructures". International Journal on Critical Infrastructure Protection, Elsevier, vol. 2(4), December 2009, 37pp, LNCS.
18. Y. Deswarte, 1. Me : "Securite des reseaux et systemes repartis". Hermes Science Publications, 2003.
19. NIST. "Engineering Principles for Information Technology Security". Special Publication 800-27. US Department of Commerce, National Institute of Standards and Technology, 2001.
20. A. Abou EI Kalam, Y. Deswarte : "Multi-OrBAC: A New Access Control Model for Distributed, Heterogeneous and Collaborative Systems". 8th IEEE International Symposium on Systems and Information Security (SSI 2006), Sao Paulo, Bresil, 8-10 novembre 2006.
21. A. Barna, A. Abou EI Kalam, Y. Deswarte, M. Kaiiniche, "A Collaborative Access Control Framework for Critical Infrastructures", Critical Infrastructure Protection IT, Ed. Mauricio Papa & Sujeet Shenoi, 2nd Annual IFIP 1 1. 10 Conference on Critical Infrastructure Protection, 16-19 mars 2008, Arlington (VA USA).
22. N. Essaouini, A. Abou EI Kalam, A. Ait Ouahman: " Access Control Policy: A Framework to Enforce Recommendations", International Journal of Computer Science and Information Technologies (UCSIT), Vol. 2 (5), 20 1 1, 2452-2463.