Dynamic deployment of context-aware access control policies for constrained security devices

Preda, Stere; Cuppens, Frédéric; Cuppens-Boulahia, Nora; García-Alfaro, Joaquín; Toutain, Laurent

doi:10.1016/j.jss.2011.02.005

Cited by 23 publications

(11 citation statements)

References 26 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…The organization-based access control approaches have been designed to allow access control management policies to be applied in a multi-organizational setting (e.g., [46][47][48]). …”

Section: Organization-based Access Controlmentioning

confidence: 99%

An ontological framework for situation-aware access control of software services

Kayes

Han

Colman

2015

Information Systems

View full text Add to dashboard Cite

“…The organization-based access control approaches have been designed to allow access control management policies to be applied in a multi-organizational setting (e.g., [46][47][48]). …”

Section: Organization-based Access Controlmentioning

confidence: 99%

An ontological framework for situation-aware access control of software services

Kayes

Han

Colman

2015

Information Systems

View full text Add to dashboard Cite

“…A prominent approach in this area constitutes the Temporal Semantic Based Access Control (TSBAC) model [33], which enhances the specification of user-defined authorisation rules by constraining time interval and temporal expressions over users' history of accesses, which are stored in a History Base. OrBAC [2][9] [31] is rather the most mature approach in this area; it is the first to express all different types of context within a unique homogeneous framework. In particular, OrBAC defines a Context Ontology comprised not only of temporal, spatial, and historical context but also of user-declared and application dependent context; the latter depends on the characteristics that join the subject, the action and the object and can be evaluated by querying the system database, whereas user-declared context allows for modelling contexts that are difficult to be described using environmental conditions.…”

Section: Related Workmentioning

confidence: 99%

Leveraging Ontologies upon a Holistic Privacy-Aware Access Control Model

Papagiannakopoulou

Koukovini

Lioudakis

et al. 2014

Foundations and Practice of Security

Self Cite

View full text Add to dashboard Cite

Abstract. Access control is a crucial concept in both ICT security and privacy, providing for the protection of system resources and personal data. The increasing complexity of nowadays systems has led to a vast family of solutions fostering comprehensive access control models, with the ability to capture a variety of parameters and to incorporate them in the decision making process. However, existing approaches are characterised by limitations regarding expressiveness. We present an approach that aims at overcoming such limitations. It is fully based on ontologies and grounded on a rich in semantics information model. The result is a privacy-aware solution that takes into consideration a variety of aspects and parameters, including attributes, context, dependencies between actions and entities participating therein, as well as separation and binding of duty constraints.

show abstract

“…Refinement approaches may also take into account the functionality offered by every firewall manufacturer (stateless, stateful, management of 11 virtual private networking, etc.) [31] to ensure the effective distribution of tasks between a decision module and the eventual filtering (enforcement) components. For the already deployed firewall configurations, the aforementioned approaches do not solve redundancy or configuration conflicts that might have been introduced due to periodic, often manual, updates.…”

Section: Related Workmentioning

confidence: 99%