Anomaly discovery and resolution in web access control policies

Hu, Hongxin; Ahn, Gail-Joon; Kulkarni, Ketan

doi:10.1145/1998441.1998472

Cited by 44 publications

(39 citation statements)

References 26 publications

(54 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In order to validate the feasibility of our approach, a proof-of-concept prototype implementation has been developed under the Eclipse environment 6 by using Model-driven tools and techniques. Concretely, our implementation is based on two features:…”

Section: Methodsmentioning

confidence: 99%

“…The following model-to-model transformation have been created: 1) A model transformation for each component model to a XACML model. 2) A library of helpers, an ATL mechanism to factorize OCL operations, representing the basic operations in section 6 3) A model transformation for the integration algorithm in 1. 4) A model query for the detection of anomalies, following the algorithm 2.…”

Section: Methodsmentioning

confidence: 99%

“…More similar to us and working on XACML policies, in [6] the authors describe approaches to detect anomalies while in [14] integration analysis for policies belonging to different authorization entities is proposed. However, they do not deal with dependencies between policies.…”

Section: Related Workmentioning

confidence: 99%

See 2 more Smart Citations

Model-Driven Integration and Analysis of Access-control Policies in Multi-layer Information Systems

Martínez

García-Alfaro²,

Cuppens

et al. 2015

ICT Systems Security and Privacy Protection

View full text Add to dashboard Cite

Abstract. Security is a critical concern for any information system. Security properties such as confidentiality, integrity and availability need to be enforced in order to make systems safe. In complex environments, where information systems are composed of a number of heterogeneous subsystems, each must participate in their achievement. Therefore, security integration mechanisms are needed in order to 1) achieve the global security goal and 2) facilitate the analysis of the security status of the whole system. For the specific case of access-control, access-control policies may be found in several components (databases, networks and applications) all, supposedly, working together in order to meet the high level security property. In this work we propose an integration mechanism for accesscontrol policies to enable the analysis of the system security. We rely on modeldriven technologies and the XACML standard to achieve this goal.

show abstract

Section: Methodsmentioning

confidence: 99%

Section: Methodsmentioning

confidence: 99%

See 1 more Smart Citation

Model-Driven Integration and Analysis of Access-control Policies in Multi-layer Information Systems

Martínez

García-Alfaro²,

Cuppens

et al. 2015

ICT Systems Security and Privacy Protection

View full text Add to dashboard Cite

show abstract

“…In future work, we are planning to determine the comprehensive privacy conflict resolution approach [21], [22]and to probe the services of collaborative management of shared data in OSN's.We would study inference-based techniques [20] for automatically configure privacy preferences in the AC2P Protocol. Besides, we plan to systematically integrate the notion of trust and reputation into Decision making model and investigate a comprehensive solution to cope with collusion attacks for providing a robust Decision making service in OSNs.…”

Section: Future Workmentioning

confidence: 99%

Detecting And Resolving Privacy Conflicts in Online Social Networks using AC2P Protocol

Harilakshmanraj¹,

Rajkumar²

2015

IJCATR

View full text Add to dashboard Cite

“…In [8] an innovative policy anomaly analysis approach for web control policy is proposed, here policy based segmentation technique is used into order to accurately identify policy anomalies.…”

Section: Related Workmentioning

confidence: 99%