O2O: Virtual private organizations to manage security policy interoperability

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 4332 LNCS, Issue , 2006, Pages 101-115

  Cuppens, Frédéric ^a   Cuppens Boulahia, Nora ^a   Coma, Céline ^a  

^a GET ENSTBretagne   (France)

Author keywords

Access control; Authority spheres; Interoperability; OrBAC; Role single sign on (RSSO); Virtual organization (VO); Virtual private organization (VPO)

Indexed keywords

INFORMATION SYSTEMS; INFORMATION USE; INTEROPERABILITY;

BUSINESS CONTINUITY; FORMAL APPROACH; ORBAC; PRIVATE ORGANIZATIONS; SECURITY POLICY; SECURITY PROBLEMS; SINGLE SIGN ON; VIRTUAL ORGANIZATION;

ACCESS CONTROL;

EID: 85025819125     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/11961635_7     Document Type: Conference Paper

References (22)

1. A. Abou El Kalam, R. E. Baida, P. Balbiani, S. Benferhat, F. Cuppens, Y. Deswarte, A. Miège, C. Saurel, and G. Trouessin. Organization Based Access Control. In Policy’03, Como, Italie, June 2003.
2. M. A. Al-Kahtani and R. Sandhu. A Model for Attribute-Based User-Role Assignment. In 18th Annual Computer Security Applications Conference (ACSAC ’02), Las Vegas, Nevada, December 2002.
3. E. Bertino, E. Ferrari, and A. Squicciarini. X-TNL: An XML Based Language for Trust Negotiations. In 4th IEEE International Workshop on Policies for Distributed Systems and Networks, pages 81–84, 2003.
4. S. Cantor, J. Hodges, J. Kemp, and P. Thompson. Liberty ID-FF Architecture Overview. Thomas Wason ed., https://www.projectliberty.org/resources/specifications.php#box1, 2005. Version 1.2.
5. F. Cuppens, N. Cuppens-Boulahia, T. Sans, and A. Miège. A formal approach to specify and deploy a network security policy. In Second Workshop FAST, Toulouse, France, 26-27 August, 2004.
6. F. Cuppens and A. Miège. Administration Model for Or-BAC. Computer Systems Science and Engineering (CSSE’04), 19(3), May, 2004.
7. T. Davies. Spheres of Control. IBM Systems Journal, 17:179–198, 1978.
8. O. et al. The OrBAC Model Web Site. http://www.orbac.org, 2006.
9. I. Foster, C. Kesselman, G. Tsudik, and S. Tuecke. A Security Architecture for Computational Grids. In 5th Conference on Computer and Communications Security, pages 83–91, San Francisco, CA, 1998.
10. A. Hersberg, Y. Mihaeli, D. Naor, and Y. Ravid. Access Control System Meets Public Infrastructure, Or: Assigning Roles to Strangers. In IEEE Symposium on Security and Privacy, Oakland, CA, May 2000.
11. J. Li, N. Li, and W. H. Winsborough. Automated Trust Negotiation Using Cryptographic Credentials. In 12th ACM Conference on Computer and Communications Security (CCS’05), November 7-11 2005.
12. M. C. Mont, R. Thyne, K. Chan, and P. Bramhall. Extending HP Identity Management Solutions to Enforce Privacy Policies and Obligations for Regulatory Compliance by Enterprises. In 12th HP OpenView University Association Workshop, July 10-13 2005.
13. A. Mowshowitz. Virtual organization. Communications of the ACM, 40(9):30–37, 1977.
14. R. Oppliger. Microsoft.net passport: A security analysis. Computer, 36(7):29–35, 2003.
15. A. Pashalidis and C. J. Mitchell. A Taxonomy of Single Sign-On Systems. In Lecture Notes in Computer Science, volume 2727, pages 249 – 264, Junary 2003.
16. L. Pearlman, C. Kesselman, V. Weich, I. Foster, and S. Tuecke. The Community Authorization Service: Status and Future. In CHEP03, La Jolia, CA, March 2003.
17. C. Philips, T. C. Ting, and S. Demurjian. Information Sharing and Security in Dynamic Coalitions. In SACMAT, Monterey, CA, June 2002.
18. M. Rittenbruch, H. Kahler, and A. Cremers. Supporting Cooperation in a Virtual Organization. In ICIS, 1998.
19. R. S. Sandhu, E. J. Coyne, H. L. Feinstein, and C. E. Youman. Role-Based Access Control Models. Computer, 29(2):38–47, 1996.
20. J. D. Ullman. Principles of Database and Knowledge-Base Systems, Volume II. Computer Science Press, 1989.
21. J. Warner, V. Atluri, and R. Mukkamala. A Credential-Based Approach for Facilitating Automatic Resource Sharing among Ah-Hoc Dynamic Coalitions. In 19th Annual IFIP WG 11.3 Working Conference on Data and Applications Security, Storrs, CT, August 2005.
22. T. Yu, M. Winslett, and K. Seamons. Supporting Structured Credentials and Sensitive Policies through Interoperable Strategies for Automated Trust Negociations. ACM Transactions and Information System Security, 6(1), February 2003.