ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
Regulating service access and information release on the Web
Full text PdfPdf (600 KB)
Source Conference on Computer and Communications Security archive
Proceedings of the 7th ACM conference on Computer and communications security table of contents
Athens, Greece
Pages: 134 - 143  
Year of Publication: 2000
ISBN:1-58113-203-4
Authors
Piero Bonatti  Dipartimento di Scienze dell'Informazione, Polo di Crema, Via Bramante, 65, 26013 - Crema, Italy
Pierangela Samarati  Dipartimento di Scienze dell'Informazione, Polo di Crema, Via Bramante, 65, 26013 - Crema, Italy
Sponsors
Greek Com Soc : Greek Computer Society
SIGSAC: ACM Special Interest Group on Security, Audit, and Control
Athens U of Econ & Business : Athens University of Economics and Business
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 12,   Downloads (12 Months): 58,   Citation Count: 36
Additional Information:

references   cited by   index terms   collaborative colleagues  

Tools and Actions: Request Permissions Request Permissions    Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/352600.352620
What is a DOI?

REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
Serge Abiteboul , Peter Buneman , Dan Suciu, Data on the Web: from relations to semistructured data and XML, Morgan Kaufmann Publishers Inc., San Francisco, CA, 1999
 
2
M. Blaze, J. Feigenbaum, J. Ioannidis, and A. D. Keromytis. The role of trust management in distributed systems security. InSecure Internet Programming: Issues in Distributed and Mobile Object Systems. Springer Verlag { LNCS State-of-the-Art series, 1998.
 
3
P. Bonatti and P. Samarati. Regulating Service Access and Information Release on the Web (extended version). In preparation.
4
Chen-Chuan K. Chang , Héctor García-Molina, Mind your vocabulary: query mapping across heterogeneous information sources, Proceedings of the 1999 ACM SIGMOD international conference on Management of data, p.335-346, May 31-June 03, 1999, Philadelphia, Pennsylvania, United States
 
5
Communication of the ACM. Special Issue on Internet Privacy, February 1999.
 
6
Electronic Privacy Information Center. http://www.epic.org.
 
7
C. Ellison. SPKI certi~cate documentation. http://www.pobox.com/?cme/html/spki.html.
 
8
B. Gladman, C. Ellison, and N. Bohm. Digital signatures, certi~cates and electronic commerce. http://www.clark.net/pub/cme/html/spki.html.
9
Sushil Jajodia , Pierangela Samarati , V. S. Subrahmanian , Eliza Bertino, A unified framework for enforcing multiple access control policies, Proceedings of the 1997 ACM SIGMOD international conference on Management of data, p.474-485, May 11-15, 1997, Tucson, Arizona, United States
 
10
J. W. Lloyd, Foundations of logic programming, Springer-Verlag New York, Inc., New York, NY, 1984
 
11
Ueli M. Maurer, Modelling a Public-Key Infrastructure, Proceedings of the 4th European Symposium on Research in Computer Security: Computer Security, p.325-350, September 25-27, 1996
 
12
N. H. Minsky , V. Ungureanu, A Mechanism for Establishing Policies for Electronic Commerce, Proceedings of the The 18th International Conference on Distributed Computing Systems, p.322, May 26-29, 1998
13
Joseph Reagle , Lorrie Faith Cranor, The platform for privacy preferences, Communications of the ACM, v.42 n.2, p.48-55, Feb. 1999  [doi>10.1145/293411.293455]
 
14
Martin Roscheisen , Terry Winograd, A Communication Agreement Framework for Access/Action Control, Proceedings of the 1996 IEEE Symposium on Security and Privacy, p.154, May 06-08, 1996
 
15
K. Sagonas, T. Swift, D. Warren, J. Freire, and P. Rao. The XSB programmer's manual, version 2.2. http://xsb.sourceforge.net, April 2000.
 
16
K. E. Seamons, W. Winsborough, and M. Winslett. Internet credential acceptance policies. In Proceedings of the Workshop on Logic Programming for Internet Applications, Leuven, Belgium, July 1997.
 
17
V. Subrahmanian, S. Adali, A. Brink, J. J. Lu, A. Rajput, T. J. Rogers, R. Ross, and C. Ward. Hermes: Heterogeneous reasoning and mediator system. http://www.cs.umd.edu/projects/publications/ abstracts/hermes.html.
 
18
Gio Wiederhold , Michael Genesereth, The Conceptual Basis for Mediation Services, IEEE Expert: Intelligent Systems and Their Applications, v.12 n.5, p.38-47, September 1997  [doi>10.1109/64.621227]
 
19
W. Winsborough, K. E. Seamons, and V. Jones. Automated trust negotiation. In Proc. of the DARPA Information Survivability Conf. & Exposition, Hilton Head Island, SC, USA, January 25-27 2000. IEEE-CS.
 
20
Marianne Winslett , Neil Ching , Vicki Jones , Igor Slepchin, Assuring security and privacy for digital library transactions on the Web: client and server security policies, Proceedings of the IEEE international forum on Research and technology advances in digital libraries, p.140-151, May 07-09, 1997, Washington, D.C., United States
21
Ting Yu , Xiaosong Ma , Marianne Winslett, PRUNES: an efficient and complete strategy for automated trust negotiation over the Internet, Proceedings of the 7th ACM conference on Computer and communications security, p.210-219, November 01-04, 2000, Athens, Greece  [doi>10.1145/352600.352633]

CITED BY  36
Ting Yu , Marianne Winslett , Kent E. Seamons, Interoperable strategies in automated trust negotiation, Proceedings of the 8th ACM conference on Computer and Communications Security, November 05-08, 2001, Philadelphia, PA, USA
Ninghui Li , William H. Winsborough , John C. Mitchell, Distributed credential chain discovery in trust management: extended abstract, Proceedings of the 8th ACM conference on Computer and Communications Security, November 05-08, 2001, Philadelphia, PA, USA
Trust management for IPsec, ACM Transactions on Information and System Security (TISSEC), v.5 n.2, p.95-118, May 2002
Ernesto Damiani , Sabrina De Capitani di Vimercati , Stefano Paraboschi , Pierangela Samarati, Fine grained access control for SOAP E-services, Proceedings of the 10th international conference on World Wide Web, p.504-513, May 01-05, 2001, Hong Kong, Hong Kong
Piero A. Bonatti , Pierangela Samarati, A uniform framework for regulating service access and information release on the web, Journal of Computer Security, v.10 n.3, p.241-271, 2002
Ernesto Damiani , De Capitani di Vimercati , Stefano Paraboschi , Pierangela Samarati , Fabio Violante, A reputation-based approach for choosing reliable resources in peer-to-peer networks, Proceedings of the 9th ACM conference on Computer and communications security, November 18-22, 2002, Washington, DC, USA
Jan Camenisch , abhi shelat , Dieter Sommer , Simone Fischer-Hübner , Marit Hansen , Henry Krasemann , Gérard Lacoste , Ronald Leenes , Jimmy Tseng, Privacy and identity management for everyone, Proceedings of the 2005 workshop on Digital identity management, November 11-11, 2005, Fairfax, VA, USA
Adam Hess , Jason Holt , Jared Jacobson , Kent E. Seamons, Content-triggered trust negotiation, ACM Transactions on Information and System Security (TISSEC), v.7 n.3, p.428-456, August 2004
Lingyu Wang , Duminda Wijesekera , Sushil Jajodia, A logic-based framework for attribute based access control, Proceedings of the 2004 ACM workshop on Formal methods in security engineering, October 29-29, 2004, Washington DC, USA
Ting Yu , Marianne Winslett , Kent E. Seamons, Supporting structured credentials and sensitive policies through interoperable strategies for automated trust negotiation, ACM Transactions on Information and System Security (TISSEC), v.6 n.1, p.1-42, February 2003
Marianne Winslett , Charles C. Zhang , Piero A. Bonatti, PeerAccess: a logic for distributed authorization, Proceedings of the 12th ACM conference on Computer and communications security, November 07-11, 2005, Alexandria, VA, USA
Ting Yu , Marianne Winslett, Policy migration for sensitive credentials in trust negotiation, Proceedings of the 2003 ACM workshop on Privacy in the electronic society, October 30, 2003, Washington, DC
Robert W. Bradshaw , Jason E. Holt , Kent E. Seamons, Concealing complex policies with hidden credentials, Proceedings of the 11th ACM conference on Computer and communications security, October 25-29, 2004, Washington DC, USA
Marianne Winslett , Ting Yu , Kent E. Seamons , Adam Hess , Jared Jacobson , Ryan Jarvis , Bryan Smith , Lina Yu, Negotiating Trust on the Web, IEEE Internet Computing, v.6 n.6, p.30-37, November 2002
Jason E. Holt , Robert W. Bradshaw , Kent E. Seamons , Hilarie Orman, Hidden Credentials, Proceedings of the 2003 ACM workshop on Privacy in the electronic society, October 30, 2003, Washington, DC
Trust-X: A Peer-to-Peer Framework for Trust Establishment, IEEE Transactions on Knowledge and Data Engineering, v.16 n.7, p.827-842, July 2004
Jiangtao Li , Ninghui Li , William H. Winsborough, Automated trust negotiation using cryptographic credentials, Proceedings of the 12th ACM conference on Computer and communications security, November 07-11, 2005, Alexandria, VA, USA
Keith Irwin , Ting Yu, Preventing attribute information leakage in automated trust negotiation, Proceedings of the 12th ACM conference on Computer and communications security, November 07-11, 2005, Alexandria, VA, USA
Adam Hess , Kent E. Seamons, An access control model for dynamic client-side content, Proceedings of the eighth ACM symposium on Access control models and technologies, June 02-03, 2003, Como, Italy
Sudip Chakraborty , Indrajit Ray, TrustBAC: integrating trust relationships into the RBAC model for access control in open systems, Proceedings of the eleventh ACM symposium on Access control models and technologies, June 07-09, 2006, Lake Tahoe, California, USA
P. Bonatti , E. Damiani , S. De Capitani di Vimercati , P. Samarati, An access control model for data archives, Proceedings of the 16th international conference on Information security: Trusted information: the new decade challenge, June 11-13, 2001, Paris, France
Adam J. Lee , Marianne Winslett , Jim Basney , Von Welch, Traust: a trust negotiation-based authorization service for open systems, Proceedings of the eleventh ACM symposium on Access control models and technologies, June 07-09, 2006, Lake Tahoe, California, USA
William H. Winsborough , Ninghui Li, Safety in automated trust negotiation, ACM Transactions on Information and System Security (TISSEC), v.9 n.3, p.352-390, August 2006
Adam J. Lee , Marianne Winslett, Safety and consistency in policy-based authorization systems, Proceedings of the 13th ACM conference on Computer and communications security, October 30-November 03, 2006, Alexandria, Virginia, USA
Anna C. Squicciarini , Elisa Bertino , Elena Ferrari , Indrakshi Ray, Achieving Privacy in Trust Negotiations with an Ontology-Based Approach, IEEE Transactions on Dependable and Secure Computing, v.3 n.1, p.13, January 2006
A. Squicciarini , E. Bertino , Elena Ferrari , F. Paci , B. Thuraisingham, PP-trust-X: A system for privacy preserving trust negotiations, ACM Transactions on Information and System Security (TISSEC), v.10 n.3, p.12-es, July 2007
Adam J. Lee , Marianne Winslett, Enforcing Safety and Consistency Constraints in Policy-Based Authorization Systems, ACM Transactions on Information and System Security (TISSEC), v.12 n.2, p.1-33, December 2008
Adam J. Lee , Marianne Winslett , Jim Basney , Von Welch, The Traust Authorization Service, ACM Transactions on Information and System Security (TISSEC), v.11 n.1, p.1-33, February 2008
Adam J. Lee , Marianne Winslett, Towards an efficient and language-agnostic compliance checker for trust negotiation systems, Proceedings of the 2008 ACM symposium on Information, computer and communications security, March 18-20, 2008, Tokyo, Japan
Lars E. Olson , Michael J. Rosulek , Marianne Winslett, Harvesting credentials in trust negotiation as an honest-but-curious adversary, Proceedings of the 2007 ACM workshop on Privacy in electronic society, October 29-29, 2007, Alexandria, Virginia, USA
Keith Frikken , Mikhail Atallah , Jiangtao Li, Attribute-Based Access Control with Hidden Policies and Hidden Credentials, IEEE Transactions on Computers, v.55 n.10, p.1259-1270, October 2006
Roman Spanek, SecGRID: model for maintaining trust in large-scale dynamic environments, International Journal of Grid and Utility Computing, v.1 n.2, p.146-158, December 2009
Feng Zhu , Wei Zhu , Matt W. Mutka , Lionel M. Ni, Private and Secure Service Discovery via Progressive and Probabilistic Exposure, IEEE Transactions on Parallel and Distributed Systems, v.18 n.11, p.1565-1577, November 2007
Peter C. Chapin , Christian Skalka , X. Sean Wang, Authorization in trust management: Features and foundations, ACM Computing Surveys (CSUR), v.40 n.3, p.1-48, August 2008
Adam J. Lee , Kazuhiro Minami , Nikita Borisov, Confidentiality-preserving distributed proofs of conjunctive queries, Proceedings of the 4th International Symposium on Information, Computer, and Communications Security, March 10-12, 2009, Sydney, Australia
Georg Gottlob , Reinhard Pichler , Fang Wei, Efficient datalog abduction through bounded treewidth, Proceedings of the 22nd national conference on Artificial intelligence, p.1626-1631, July 22-26, 2007, Vancouver, British Columbia, Canada

INDEX TERMS

Primary Classification:
  H. Information Systems
  H.2 DATABASE MANAGEMENT
      H.2.7 Database Administration
          Subjects: Security, integrity, and protection

Additional Classification:
  C. Computer Systems Organization
  C.2 COMPUTER-COMMUNICATION NETWORKS
      C.2.0 General
          Subjects: Security and protection (e.g., firewalls)

  D. Software
  D.2 SOFTWARE ENGINEERING
        D.2.11 Software Architectures
            Subjects: Patterns (e.g., client/server, pipeline, blackboard)
  D.4 OPERATING SYSTEMS
      D.4.6 Security and Protection
          Subjects: Access controls

  H. Information Systems
  H.3 INFORMATION STORAGE AND RETRIEVAL
      H.3.5 On-line Information Services
          Subjects: Web-based services

  K. Computing Milieux
  K.4 COMPUTERS AND SOCIETY
      K.4.4 Electronic Commerce
          Subjects: Security
  K.6 MANAGEMENT OF COMPUTING AND INFORMATION SYSTEMS


General Terms:
Design, Languages, Performance, Reliability, Security, Theory


Keywords:
access control, digital certificate, privacy

Collaborative Colleagues:
Piero Bonatti: colleagues
Pierangela Samarati: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player