High Level Conflict Management Strategies in Advanced Access Control Models

Cuppens, Frédéric; Cuppens-Boulahia, Nora; Ghorbel, Meriam Ben

doi:10.1016/j.entcs.2007.01.064

Cited by 87 publications

(59 citation statements)

References 13 publications

(24 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In the OrBAC model, concrete security policy rules are derived automatically Derivation in the OrBAC model is computable in polynomial time. 19 …”

Section: Kaosmentioning

confidence: 99%

“…To ease the policy designer's work, we anticipate the resolution of conflicts generated by such exception rules. For this purpose and as suggested in, 19 conflicts are solved by assigning priorities to security rules. Thus, exception rules are always associated with higher priority than other security rules (including the non derivable rules).…”

Section: Underivability and Exceptionmentioning

confidence: 99%

“…Thus, exception rules are always associated with higher priority than other security rules (including the non derivable rules). This conflict resolution strategy is chosen to manage the shadowing anomaly b and 19 shows that this strategy is computable in polynomial time.…”

Section: Underivability and Exceptionmentioning

confidence: 99%

See 2 more Smart Citations

Secure interoperability with O2O contracts

Coma¹,

Cuppens-Boulahia²,

Cuppens³

2010

Atlantis Ambient and Pervasive Intelligence

Self Cite

View full text Add to dashboard Cite

show abstract

“…In the OrBAC model, concrete security policy rules are derived automatically Derivation in the OrBAC model is computable in polynomial time. 19 …”

Section: Kaosmentioning

confidence: 99%

Section: Underivability and Exceptionmentioning

confidence: 99%

See 1 more Smart Citation

Secure interoperability with O2O contracts

Coma¹,

Cuppens-Boulahia²,

Cuppens³

2010

Atlantis Ambient and Pervasive Intelligence

Self Cite

View full text Add to dashboard Cite

show abstract

“…Currently, only access control and obligations are supported. However, it is straightforward to add support for more advanced features such as delegation [20] and more advanced conflict detection and resolution strategies [21].…”

Section: B Policy Decision Pointmentioning

confidence: 99%

A PEP-PDP Architecture to Monitor and Enforce Security Policies in Java Applications

Elrakaiby

Traon

2013

2013 International Conference on Availability, Reliability and Security

View full text Add to dashboard Cite

Abstract-Security of Java-based applications is crucial to many businesses today. In this paper, we propose an approach to completely automate the generation of a security architecture inside of a target Java application where advanced security policies can be enforced. Our approach combines the use of Aspect-Oriented Programming with the Policy Enforcement Point (PEP) -Policy Decision Point (PDP) paradigm and allows the runtime update of policies.

show abstract

“…We assume that this issue has been checked. There are several techniques to achieve this goal (see for instance [7]). …”

Section: Introductionmentioning

confidence: 99%

Testing Security Rules with Decomposable Activities

Lee

Won

Sung

et al. 2007

10th IEEE High Assurance Systems Engineering Symposium (HASE'07)

View full text Add to dashboard Cite

Abstract-Checking that a security policy has been correctly deployed over a network is a key issue for system administrators. Specification and testing of such policies constitute fundamental steps in the development of a secure system. To address both challenges, we propose a framework to describe how modalities such as permissions, prohibitions and obligations -involving decomposable activities-can be integrated in a functional EFSM specification of a system to obtain a new specification of the system that takes into account the security policy. Then, we propose a method to automatically derive test sequences to test the implementation, using a dedicated tool developed in our laboratory. Finally, we apply our framework to a Weblog system case study to demonstrate its reliability.

show abstract

High Level Conflict Management Strategies in Advanced Access Control Models

Cited by 87 publications

References 13 publications

Secure interoperability with O2O contracts

Secure interoperability with O2O contracts

A PEP-PDP Architecture to Monitor and Enforce Security Policies in Java Applications

Testing Security Rules with Decomposable Activities

Contact Info

Product

Resources

About