Policy mediation for multi-enterprise environments

Proceedings - Annual Computer Security Applications Conference, ACSAC

Volumn 2000-January, Issue , 2000, Pages 100-106

  Galiasso, P ^a   Bremer, O ^a   Hale, J ^a   Shenoi, S ^a   Ferraiola, D ^b   Hu, V ^b  

^a The University of Tulsa   (United States)

^b NATIONAL INSTITUTE OF STANDARDS AND TECHNOLOGY   (United States)

Author keywords

Access control; Authentication; Communication system security; Computer science; Databases; Fasteners; Information security; Mediation; Middleware; NIST

Indexed keywords

ACCESS CONTROL; AUTHENTICATION; COMPUTER CONTROL SYSTEMS; COMPUTER SCIENCE; DATABASE SYSTEMS; FASTENERS; INFORMATION SERVICES; MIDDLEWARE; NETWORK ARCHITECTURE; SECURITY OF DATA; SECURITY SYSTEMS; STATIC ANALYSIS;

ACCESS CONTROL POLICIES; COMMUNICATION SYSTEM SECURITY; ENTERPRISE ENVIRONMENT; HETEROGENEOUS INFORMATION; MEDIATION; MEDIATION ARCHITECTURE; NIST; SOFTWARE INFRASTRUCTURE;

NETWORK SECURITY;

EID: 84902478861     PISSN: 10639527     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/ACSAC.2000.898863     Document Type: Conference Paper

References (25)

1. M. Abrams et al. (1990) A generalized framework for access control: An informal description. Proc. 13th National Computer Security Conference, 135-143.
2. G. Ahn and R. Sandhu (1999) The RSL99 language for role-based separation of duty constraints. Proc. 4th ACM Workshop on Role-Based Access Control.
3. D. Bell (1994) Modeling the multipolicy machine. Proc. New Security Paradigms Workshop, 2-9.
4. E. Bertino et al. (1996) Supporting multiple access control policies in database systems. Proc. IEEE Symposium on Research in Security and Privacy, 94-109.
5. K. Candan et al. (1996) Secure mediated databases. Proc. 12th International Conference on Data Engineering, 28-37.
6. S. De Capitani di Vimercati and P. Samarati (1997) Authorization specification and enforcement in federated database systems. Journal of Computer Security, 5(2), 155-188.
7. D. Denning (1999) Information Warfare and Security. Addison-Wesley, Reading, Massachusetts.
8. S. Dawson et al. (1998) Secure interoperation of heterogeneous systems: A mediator-based approach. Proc. 14th IFIP TC-11 International Conference on Information Security.
9. V. Gligor et al. (1998) On the formal definition of separation-of-duty policies and their composition. Proc. IEEE Symposium on Research in Security and Privacy.
10. G. Hamilton, R. Cattell and M. Fisher (1997) JDBC Database Access With Java: A Tutorial and Annotated Reference. Addison-Wesley, New York.
11. H. Hosmer (1993) The multipolicy paradigm for trusted systems. Proc. New Security Paradigms Workshop, 19-32.
12. S. Jajodia et al. (1997) A logical language for expressing authorizations. Proc. IEEE Symposium on Research in Security and Privacy, 31-42.
13. S. Jajodia et al. (1997) A unified framework for enforcing multiple access control policies. Proc. ACM SIGMOD Conference, 474-485.
14. D. Jonscher and K. Dittrich (1995) Argos - A configurable access control system for interoperable environments, in Database Security, IX: Status and Prospects (eds. Spooner, D. et al.), Chapman-Hall, London, 43-60.
15. W. Kuhnhauser and M. von Kopp Ostrowski (1995) A framework to support multiple security policies. Proc. 7th Annual Canadian Computer Security Symposium.
16. T. J. Mowbray and R. Zahavi (1995) The Essential CORBA: Systems Integration Using Distributed Objects. John Wiley, New York.
17. National Computer Security Center (NCSC) (1987) A Guide to Understanding Discretionary Access Control in Trusted Systems. Report NSCD-TG-003 Version 1.
18. W. Rosenberry, D. Kenney and G. Fisher (1993) Understanding DCE. O'Reilly and Associates, Inc., Sebastopal, California.
19. R. Sandhu (1993) Lattice-based access control models. IEEE Computer, 26(11), 9-19.
20. R. Sandhu et al. (1996) Role-based access control models. IEEE Computer, 29(2), 38-47.
21. O. Saydjari et al. (1993) Synergy: A Distributed, Microkernel-Based Security Architecture, Version 1.0. Technical Report, National Security Agency, Fort Meade, Maryland.
22. F. Schneider (Ed.) (1999) Trust in Cyberspace. National Academy Press, Washington D.C.
23. R. Spencer et al. (1999) The Flask Security Architecture: System Support for Diverse Security Policies, www.cs.utah.edu/fluz/flask.
24. The White House (2000) Defending America's Cyberspace: National Plan for Information Systems Protection (Version 1.0), Washington, D.C.
25. G. Wiederhold (1992) Mediators in the architecture of future information systems: A new approach. IEEE Computer, 25(3), 38-49.