Application-sensitive access control evaluation using parameterized expressiveness

Proceedings of the Computer Security Foundations Workshop

Volumn , Issue , 2013, Pages 145-160

  Hinrichs, Timothy L ^a   Martinoia, Diego ^a   Garrison III, William C ^b   Lee, Adam J ^b   Panebianco, Alessandro ^a   Zuck, Lenore ^a  

^a 1120 Science and Engineering Offices   (United States)

^b University of Pittsburgh   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

ACCESS CONTROL SCHEMES; BEST FIT; FORMAL FRAMEWORK; MAIN TASKS; PARAMETERIZED;

SECURITY SYSTEMS;

ACCESS CONTROL;

EID: 84884999344     PISSN: 10636900     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/CSF.2013.17     Document Type: Conference Paper

References (16)

1. M. A. Harrison, W. L. Ruzzo, and J. D. Ullman, "Protection in operating systems, " Communications of the ACM, vol. 19, no. 8, pp. 461-471, 1976.
2. R. J. Lipton and L. Snyder, "A linear time algorithm for deciding subject security, " Journal of the ACM, vol. 24, no. 3, pp. 455-464, 1977.
3. P. Ammann, R. J. Lipton, and R. S. Sandhu, "The expressive power of multi-parent creation in monotonic access control models, " Journal of Computer Security, vol. 4, no. 2/3, pp. 149-166, 1996.
4. A. Chander, J. C. Mitchell, and D. Dean, "A state-transition model of trust management and access control, " in CSFW. IEEE Computer Society, 2001, pp. 27-43.
5. M. V. Tripunitara and N. Li, "A theory for comparing the expressive power of access control models, " Journal of Computer Security, vol. 15, no. 2, pp. 231-272, 2007.
6. S. Osborne, R. Sandhu, and Q. Munawer, "Configuring role-based access control to enforce mandatory and discretionary access control policies, " ACM Transactions on Information and System Security, vol. 3, no. 2, pp. 85-106, May 2000.
7. R. Sandhu, "Expressive power of the schematic protection model, " Journal of Computer Security, vol. 1, no. 1, pp. 59-98, 1992.
8. R. Sandhu and S. Ganta, "On testing for absence of rights in access control models, " in Proceedings of the Sixth Computer Security Foundations Workshop (CSFW), Jun. 1993, pp. 109-118.
9. E. Bertino, B. Catania, E. Ferrari, and P. Perlasca, "A logical framework for reasoning about access control models, " ACM Transactions on Information and System Security, vol. 6, no. 1, pp. 71-127, 2003.
10. U. S. Air Force Scientific Advisory Board, "Networking to enable coalition operations, " MITRE Corporation, Tech. Rep., 2004.
11. T. L. Hinrichs, D. Martinoia, W. C. Garrison III, A. J. Lee, A. Panebianco, and L. Zuck, "Application-Sensitive Access Control Evaluation using Parameterized Expressiveness (Extended Version), " http://people. cs. pitt. edu/adamlee/pubs/2013/ hinrichs2013applicationsensitive-long. pdf, 2013.
12. "Horizontal integration: Broader access models for realizing information dominance, " MITRE Corporation JASON Program Office, Tech. Rep. JSR-04-13, Dec. 2004.
13. J. Crampton, "Understanding and developing role-based administrative models, " in Proceedings of the ACM Conference on Computer and Communications Security, 2005, pp. 158-167.
14. Q. Munawer and R. S. Sandhu, "Simulation of the augmented typed access matrix model (ATAM) using roles, " in Proceedings of INFOSECU99 International Conference on Information and Security, 1999.
15. N. Li, J. C. Mitchell, and W. H. Winsborough, "Beyond proof-ofcompliance: security analysis in trust management, " Journal of the ACM, vol. 52, no. 3, pp. 474-514, 2005.
16. N. Dershowitz and Y. Gurevich, "A natural axiomatization of computability and proof of Church's thesis, " Bulletin of Symbolic Logic, vol. 14, no. 3, pp. 299-350, 2008.