Alberto Cappadonia scite author profile

Alberto Cappadonia

3Publications

44Citation Statements Received

52Citation Statements Given

How they've been cited

How they cite others

Affiliations

Polytechnic University of Turin

Publications

Order By: Most citations

Network-Level Access Control Policy Analysis and Transformation

Basile

Cappadonia

Lioy

2012

IEEE/ACM Trans. Networking

View full text Add to dashboard Cite

Network-level access control policies are often specified by various people (network, application, and security administrators), and this may result in conflicts or suboptimal policies. We have defined a new formal model for policy representation that is independent of the actual enforcement elements, along with a procedure that allows the easy identification and removal of inconsistencies and anomalies. Additionally, the policy can be translated to the model used by the target access control element to prepare it for actual deployment. In particular, we show that every policy can be translated into one that uses the "First Matching Rule" resolution strategy. Our policy model and optimization procedure have been implemented in a tool that experimentally demonstrates its applicability to real-life cases.

show abstract

Geometric Interpretation of Policy Specification

Basile

Cappadonia

Lioy

2008

View full text Add to dashboard Cite

The actual implementation of a policy on real devices must be done by providing a "set of rules". Nevertheless, no extensive studies were performed to completely model this crucial process. This paper provides a formal geometric interpretation of the policy specification focusing on the role of three factors: the detection, the resolution and the default behavior. The resulting model allows for the definition of new resolution strategies and the definition of "morphisms" between rule sets where conflicts are managed using different resolution methods. Additionally, it provides a mean to classify conflicts and anomalies for the "generic" resolution strategy. The effectiveness of the theory is proven by means of experimental results.

show abstract

Algebraic Models to Detect and Solve Policy Conflicts

Basile

Cappadonia

Lioy

View full text Add to dashboard Cite

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.