Security policy coordination for heterogeneous information systems

Proceedings - Annual Computer Security Applications Conference, ACSAC

Volumn Part F133431, Issue , 1999, Pages 219-228

  Hale, John ^a   Galiasso, Pablo ^a   Papa, Mauricio ^a   Shenoi, Sujeet ^a  

^a The University of Tulsa Tulsa   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

SECURITY OF DATA; SECURITY SYSTEMS; SEMANTICS;

AUTHORIZATION MODEL; FORMAL FOUNDATION; GLOBAL CONSISTENCY; HETEROGENEOUS INFORMATION; POLICY ENFORCEMENT; SECURE INTEROPERATION; SECURITY POLICY; STATIC AND DYNAMIC ANALYSIS;

INFORMATION MANAGEMENT;

EID: 85053178227     PISSN: 10639527     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/CSAC.1999.816031     Document Type: Conference Paper

References (22)

1. D. Bell. Modeling the multipolicy machine. Proceedings of the New Security Paradigms Workshop, 2-9, 1994.
2. E. Bertino, S. Jajodia and P. Samarati. Access control in object-oriented database systems: Some approaches and issues, in Advanced Database Concepts and Research Issues (LNCS 759) (eds. N. Adam and B. Bhargava), Springer-Verlag, Amsterdam, 17-44, 1993.
3. E. Bertino, S. Jajodia and P. Samarati. Supporting multiple access control policies in database systems. Proceedings of the IEEE Symposium on Research in Security and Privacy, 94-109, 1996.
4. H. H. Bruggemann. Rights in an object-oriented environment. Database Security, V: Status and Prospects (eds. C. Landwehr and S. Jajodia), Elsevier, Amsterdam, 99-115, 1992.
5. K. S. Candan, S. Jajodia and V. S. Subrahmanian, Secure mediated databases. Proceedings 12th International Conference on Data Engineering, 28-37, 1996.
6. S. Dawson, S. Qian and P. Samarati, Secure interoperation of heterogeneous systems: A mediator-based approach. Proceedings of the 14th IFIP TC-11 International Conference on Information Security, 1998.
7. S. De Capitani di Vimercati and P. Samarati. Authorization specification and enforcement in federated database systems. Journal of Computer Security, 5(2), 155-188, 1997.
8. V. Gilgor, J. Huskamp, S. Welke, C. Linn, and W. May-field. Traditional capability-based systems: An analysis of their ability to meet the trusted computer security evaluation criteria, Institute for Defense Analyses, IDA Paper P-1935, 1987.
9. J. Hale, J. Threet, and S. Shenoi. A framework for high assurance security of distributed objects. Database Security, X: Status and Prospects (eds. P. Samarati and R. Sandhu), Chapman and Hall, London, 99-115, 1997.
10. G. Hamilton, R. Cattell and M. Fisher. JDBC Database Access With Java: A Tutorial and Annotated Reference. Addison-Wesley, New York, 1997.
11. H. H. Hosmer. The multipolicy paradigm for trusted systems. Proceedings of the New Security Paradigms Workshop, 19-32, 1993.
12. S. Jajodia and B. Kogan. Integrating an object-oriented data model with multilevel security. Proceedings of the IEEE Symposium on Research in Security and Privacy, 76-85, 1990.
13. D. Jonscher and K. R. Dittrich. Argos - A configurable access control system for interoperable environments, in Database Security, IX: Status and Prospects (eds. D. Spooner et al.), Chapman and Hall, London, 43-60, 1995.
14. W. E. Kuhnhauser and M. von Kopp Ostrowski. A framework to support multiple security policies. Proceedings of the 7th Annual Canadian Computer Security Symposium, 1995.
15. T. J. Mowbray and R. Zahavi. The Essential CORBA: Systems Integration Using Distributed Objects. John Wiley, New York, 1995.
16. W. Rosenberry, D. Kenney and G. Fisher. Understanding DCE. O'Reilly and Associates, Inc., Sebastopal, California, 1993.
17. A. Rosenthal, J. Williams, W. Herndon and B. Thu-raisingham. A fine grained access control model for object-oriented DBMSs, in Database Security, VIII: Status and Prospects (eds. J. Biskup et al.), Elsevier, Amsterdam, 319-334, 1994.
18. R. Sandhu. Access control: The neglected frontier. Proceedings of the First Australian Conference on Information Security and Privacy, 1996.
19. R. Sandhu, E. Coyne, H. Feinstein and C. Youman. Role-based access control models. IEEE Computer, 29(2), 38-47, 1996.
20. R. K. Thomas and R. Sandhu. Discretionary access control in object-oriented databases: Issues and research directions. Proceedings of the Sixteenth National Computer Security Conference, 63-74, 1993.
21. R. K. Thomas and R. Sandhu. Task-based authorization controls (TBAC): A family of models for active and enterprise-oriented authorization Management, in Database Security, XI: Status and Prospects (eds. T.Y. Lin and S. Qian), Chapman and Hall, London, 166-181, 1997.
22. G. Wiederhold. Mediators in the architecture of future information systems: A new approach. IEEE Computer, 25(3), 38-49, 1992.