ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
On the specification and evolution of access control policies
Full text PdfPdf (241 KB)
Source ACM Workshop on Role Based Access Control archive
Proceedings of the sixth ACM symposium on Access control models and technologies table of contents
Chantilly, Virginia, United States
Pages: 121 - 130  
Year of Publication: 2001
ISBN:1-58113-350-2
Authors
M. Koch  P.S.I., AG, Berlin
L. V. Mancini  Univ. di Roma La Sapienza, Rome
F. Parisi-Presicce  George Mason Univ., Fairfax, VA
Sponsor
SIGSAC: ACM Special Interest Group on Security, Audit, and Control
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 6,   Downloads (12 Months): 50,   Citation Count: 11
Additional Information:

abstract   references   cited by   index terms   collaborative colleagues  

Tools and Actions: Request Permissions Request Permissions    Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/373256.373280
What is a DOI?

ABSTRACT

A uniform and precise framework for the specification of access control policies is proposed. The uniform framework allows the detailed comparison of different policy models, the precise description of the evolution of a policy, and an accurate analysis of the interaction between policies and of the behavior of their integration. The evolution and integration of policies are illustrated using a Discretionary Access Control policy and a Lattice Based Access Control policy. The framework is based on the theory of graph transformations.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

1
Piero Bonatti , Sabrina de Capitani di Vimercati , Pierangela Samarati, A modular approach to composing access control policies, Proceedings of the 7th ACM conference on Computer and communications security, p.164-173, November 01-04, 2000, Athens, Greece  [doi>10.1145/352600.352623]
 
2
Andrea Corradini , Francesca Rossi , Francesco Parisi-Presicce, Logic programming as hypergraph rewriting, Proceedings of the international joint conference on theory and practice of software development on Colloquium on trees in algebra and programming (CAAP '91): vol 1, p.275-295, April 1991, Brighton, United Kingdom
 
3
H. Ehrig , G. Engels , H.-J. Kreowski , G. Rozenberg, Handbook of graph grammars and computing by graph transformation: vol. 2: applications, languages, and tools, World Scientific Publishing Co., Inc., River Edge, NJ, 1999
 
4
Martin Große-Rhode , Francesco Parisi-Presicce , Marta Simeoni, Spatial and Temporal Refinement of Typed Graph Transformation Systems, Proceedings of the 23rd International Symposium on Mathematical Foundations of Computer Science, p.553-561, August 24-28, 1998
 
5
R. Heckel and A. Wagner. Ensuring consistency of conditional graph grammars - a constructive approach. In Proc. of SEGRAGRA'95, number 2. Electronic Notes of TCS, 1995. http://www.elsevier.nl/locate/entcs/volume2.html.
 
6
Manuel Koch , Luigi V. Mancini , Francesco Parisi-Presicce, A Formal Model for Role-Based Access Control Using Graph Transformation, Proceedings of the 6th European Symposium on Research in Computer Security, p.122-139, October 04-06, 2000
 
7
Manuel Koch , Luigi V. Mancini , Francesco Parisi-Presicce, Foundations for a Graph-Based Approach to the Specification of Access Control Policies, Proceedings of the 4th International Conference on Foundations of Software Science and Computation Structures, p.287-302, April 02-06, 2001
 
8
Grzegorz Rozenberg, Handbook of graph grammars and computing by graph transformation: volume I. foundations, World Scientific Publishing Co., Inc., River Edge, NJ, 1997
 
9
Ravi S. Sandhu, Lattice-Based Access Control Models, Computer, v.26 n.11, p.9-19, November 1993  [doi>10.1109/2.241422]
 
10
R. S. Sandhu. Role-Based Access Control. In Advances in Computers, volume 46. Academic Press, 1998.
 
11
R. Sandu and P. Samarati. Access Control: Principles and Practice. IEEE Communication Magazine, pages 40-48, 1994.

CITED BY  11
Manuel Koch , Luigi V. Mancini , Francesco Parisi-Presicce, A graph-based formalism for RBAC, ACM Transactions on Information and System Security (TISSEC), v.5 n.3, p.332-365, August 2002
Elisa Bertino , Barbara Catania , Elena Ferrari , Paolo Perlasca, A logical framework for reasoning about access control models, ACM Transactions on Information and System Security (TISSEC), v.6 n.1, p.71-127, February 2003
Jean Bacon , Ken Moody , Walt Yao, Access control and trust in the use of widely distributed services, Software—Practice & Experience, v.33 n.4, p.375-394, 10 April 2003
Manuel Koch , L. V. Mancini , Francesco Parisi-Presicce, Graph-based specification of access control policies, Journal of Computer and System Sciences, v.71 n.1, p.1-33, July 2005
Manuel Koch , Francesco Parisi-Presicce, Formal access control analysis in the software development process, Proceedings of the 2003 ACM workshop on Formal methods in security engineering, p.67-76, October 30, 2003, Washington, D.C.
Kathi Fisler , Shriram Krishnamurthi , Leo A. Meyerovich , Michael Carl Tschantz, Verification and change-impact analysis of access-control policies, Proceedings of the 27th international conference on Software engineering, May 15-21, 2005, St. Louis, MO, USA
Prasad Naldurg , Roy H. Campbell, Dynamic access control: preserving safety and trust for network defense operations, Proceedings of the eighth ACM symposium on Access control models and technologies, June 02-03, 2003, Como, Italy
Dan Lin , Prathima Rao , Elisa Bertino , Jorge Lobo, An approach to evaluate policy similarity, Proceedings of the 12th ACM symposium on Access control models and technologies, June 20-22, 2007, Sophia Antipolis, France
Sandra Rueda , Dave King , Trent Jaeger, Verifying compliance of trusted programs, Proceedings of the 17th conference on Security symposium, p.321-334, July 28-August 01, 2008, San Jose, CA
Elisa Bertino , Bhavani Thuraisingham , Michael Gertz , Maria Luisa Damiani, Security and privacy for geospatial data: concepts and research directions, Proceedings of the SIGSPATIAL ACM GIS 2008 International Workshop on Security and Privacy in GIS and LBS, November 04-04, 2008, Irvine, California
Sandra Rueda , Hayawardh Vijayakumar , Trent Jaeger, Analysis of virtual machine system policies, Proceedings of the 14th ACM symposium on Access control models and technologies, June 03-05, 2009, Stresa, Italy

INDEX TERMS

Primary Classification:
  D. Software
  D.4 OPERATING SYSTEMS
      D.4.6 Security and Protection
          Subjects: Access controls

Additional Classification:
  G. Mathematics of Computing
  G.2 DISCRETE MATHEMATICS

  H. Information Systems
  H.2 DATABASE MANAGEMENT


General Terms:
Design, Management, Performance, Security, Theory


Keywords:
graph transformation systems, methodology, specification

Collaborative Colleagues:
M. Koch: colleagues
L. V. Mancini: colleagues
F. Parisi-Presicce: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player