Refactoring multi-layered access control policies through (De)composition

Casalino, Matteo Maria; Thion, Romuald

doi:10.1109/cnsm.2013.6727843

Cited by 1 publication

(1 citation statement)

References 13 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Consequently, different approaches to tackle the problem have been proposed. From a formal perspective, in [3] the authors provide the foundations of a formal framework to represent policies in different architectural layers. Similarly, in [2] the authors analyze different combination operations for AC policies.…”

Section: Related Workmentioning

confidence: 99%

Model-Driven Integration and Analysis of Access-control Policies in Multi-layer Information Systems

Martínez

García-Alfaro²,

Cuppens

et al. 2015

IFIP Advances in Information and Communication Technology

View full text Add to dashboard Cite

Abstract. Security is a critical concern for any information system. Security properties such as confidentiality, integrity and availability need to be enforced in order to make systems safe. In complex environments, where information systems are composed of a number of heterogeneous subsystems, each must participate in their achievement. Therefore, security integration mechanisms are needed in order to 1) achieve the global security goal and 2) facilitate the analysis of the security status of the whole system. For the specific case of access-control, access-control policies may be found in several components (databases, networks and applications) all, supposedly, working together in order to meet the high level security property. In this work we propose an integration mechanism for accesscontrol policies to enable the analysis of the system security. We rely on modeldriven technologies and the XACML standard to achieve this goal.

show abstract

Section: Related Workmentioning

confidence: 99%