Expressive policy analysis with enhanced system dynamicity

Craven, Robert; Lobo, Jorge; Ma, Jiefei; Russo, Alessandra; Lupu, Emil; Bandara, Arosha K.

doi:10.1145/1533057.1533091

Cited by 65 publications

(48 citation statements)

References 33 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…[12], and Gelfond and Lobo [13]. These contributions have interesting features but they do not consider a modelling approach for depicting the AC concepts and relating them to language features.…”

Section: Related Workmentioning

confidence: 99%

A Metamodel for Hybrid Access Control Policies

Abd-Ali

Guemhioui²,

Logrippo³

2015

JSW

View full text Add to dashboard Cite

Modelling is a proven technique to communicate and illustrate complex specifications in a wide range of disciplines. Access control (AC) specification is not an exception in this regard. Actually, it is characterized by the sensitivity and criticality of its contents where clarity and formalism are yet essential desired goals. In a metamodelling approach where textual languages and visual models are two equivalent forms of specifications, we propose an AC metamodel, setting the stage for its derived textual language. Our metamodel is characterized by its formal semantics, its modularity and refinement method, and its integration means for concurrent application of multiple reusable AC models. These characteristics enable AC specification with better readability, clarity, unambiguity and properties verification support.

show abstract

Section: Related Workmentioning

confidence: 99%

A Metamodel for Hybrid Access Control Policies

Abd-Ali

Guemhioui²,

Logrippo³

2015

JSW

View full text Add to dashboard Cite

show abstract

“…The main idea is to combine two already existing data sharing solutions in order to share data in a secure way through opportunistic networks. Finally, even if not specifically DSA-related, [25] presents a policy analysis framework which considers authorizations and obligations, giving useful diagnostic information.…”

Section: Related Workmentioning

confidence: 99%

A Formal Support for Collaborative Data Sharing

Martinelli

Matteucci

Petrocchi

et al. 2012

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Abstract. Collaborating entities usually require the exchange of personal information for the achievement of a common goal, including enabling business transactions and the provisioning of critical services. A key issue affecting these interactions is the lack of control on how data is going to be used and processed by the entities that share it. To partially solve the issue, parties may have defined a set of data sharing policies regulating the exchange of data they own, or over which they have jurisdiction. However, distinct set of policies, defined by different authorities, may lead to conflicts once enacted, since, e.g., different subjects may have defined different permissions on the same data set. This paper focuses on policy analysis and offers a formal support for coming up with a conflict-free set of data sharing policies. We illustrate the methodology on the example of an emergency management.

show abstract

“…Other work within our group [18] [19] has focussed on policy conflict analysis and we will use this to detect policy conflicts. We assume that the conditions are regularly evaluated during the authoring process to detect such conflicts.…”

Section: Condition Conflict Resolution and Malicious Ownersmentioning

confidence: 99%

Collaborative Privacy Policy Authoring in a Social Networking Context

Wishart

Corapi

Marinovic

et al. 2010

2010 IEEE International Symposium on Policies for Distributed Systems and Networks

View full text Add to dashboard Cite

Abstract-Recent years have seen a significant increase in the popularity of social networking services. These online services enable users to construct groups of contacts, referred to as friends, with which they can share digital content and communicate. This sharing is actively encouraged by the social networking services, with users' privacy often seen as a secondary concern. In this paper we first propose a privacy-aware social networking service and then introduce a collaborative approach to authoring privacy policies for the service. In addressing user privacy, our approach takes into account the needs of all parties affected by the disclosure of information and digital content.

show abstract

Expressive policy analysis with enhanced system dynamicity

Cited by 65 publications

References 33 publications

A Metamodel for Hybrid Access Control Policies

A Metamodel for Hybrid Access Control Policies

A Formal Support for Collaborative Data Sharing

Collaborative Privacy Policy Authoring in a Social Networking Context

Contact Info

Product

Resources

About