Nomad: A Security Model with Non Atomic Actions and Deadlines

Cuppens, Frédéric; Cuppens-Boulahia, Nora; Sans, Thierry

doi:10.1109/csfw.2005.20

Cited by 46 publications

(31 citation statements)

References 17 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…However, it is clear that this formalism may be not sufficient to deal with arbitrary security rules, and that more specific operator/modalities need to be considered. One can think for instance of a triggered obligation bounded by an event (and not by an arbitrary timeout), or of some of the general operators proposed in the Nomad logic [3]. Further work remains to be done in order to check which of these operators could be supported by our tile-based approach.…”

Section: Perspectivesmentioning

confidence: 99%

See 1 more Smart Citation

Test Generation for Network Security Rules

Darmaillacq¹,

Fernandez

Groz³

et al. 2006

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Abstract. Checking that a security policy has been correctly deployed over a network is a key issue for system administrators. Although this is a kind of conformance testing, there are a number of significant differences with the framework of such standards as IS9646. We propose a method to derive tests from a policy expressed as a set of rules, with a single modality. For each element of our language and each type of rule, we propose a pattern of test, which we call a tile. We then combine those tiles into a test for the whole rule.

show abstract

Section: Perspectivesmentioning

confidence: 99%

“…2 There should be no user account on relays placed in the DMZ. 3 Mailbox servers containing user accounts should be in the private zone. There could be as many of these servers as necessary.…”

Section: Nomentioning

confidence: 99%

Test Generation for Network Security Rules

Darmaillacq¹,

Fernandez

Groz³

et al. 2006

Lecture Notes in Computer Science

View full text Add to dashboard Cite

show abstract

“…Bellow, we recall a part of the Nomad grammar. The complete definition of the Nomad language can be found in Cuppens et al (2005).…”

Section: Nomad Test Patternsmentioning

confidence: 99%

“…Each criterion can be also modelled formally by means of security rules written with languages such as XACML (eXtensible Access Control Markup Language OASIS standards organization (2009)), Nomad (Security Model with Non Atomic Actions and Deadlines Cuppens et al (2005)), or OrBAC (Organisation-based access control Kalam et al (2003)). …”

Section: Web Services Security Overviewmentioning

confidence: 99%

“…Several security rule languages have been introduced in Cuppens et al (2005); Senn et al (2005). We have chosen Nomad (Non atomic actions and deadlines Cuppens et al (2005)) to model abstract test patterns which can be directly derived from an existing security rule set. Nomad is well suited for expressing properties such as permissions, prohibitions or obligations and 11 www.intechopen.com is able to take into account response delays.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation