Uclinux

Kyle, David; Brustoloni, José Carlos

doi:10.1145/1314354.1314371

Cited by 22 publications

(7 citation statements)

References 8 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…P2P, GRID computing, operating systems, data base management systems, mobile systems, etc. [58,59,61,53,44,62,57,63,60,41,64,39,65,66]. Some of the most interesting approaches are briefly outlined in this subsection.…”

Section: Methodsmentioning

confidence: 99%

“…In this section, we consider security mechanisms implementable within a computer system used to achieve the UCON security goals and unfeasible to broke in a reasonable time. Security mechanisms for the policy enforcement on local platforms using the SRM are discussed by traditional access control models and are extendable to capture the UCON novelties such as ongoing usage and attribute updates [58][59][60]. Here, we focus on the open distributed computer environment protecting digital objects (e.g.…”

Section: Enforcement Mechanismsmentioning

confidence: 99%

See 1 more Smart Citation

Usage control in computer security: A survey

Lazouski

Martinelli

Mori

2010

Computer Science Review

121

View full text Add to dashboard Cite

Section: Methodsmentioning

confidence: 99%

Section: Enforcement Mechanismsmentioning

confidence: 99%

Usage control in computer security: A survey

Lazouski

Martinelli

Mori

2010

Computer Science Review

121

View full text Add to dashboard Cite

“…UCLinux [111] is a Linux security module [215] that specializes in usage control enforcement and supports attestation and sealing using the TPM. In a nutshell, UCLinux stores usage controlled files within an encrypted file system.…”

Section: Securing Data Usage Control Infrastructuresmentioning

confidence: 99%

Data Usage Control for Distributed Systems

Kelbert

Pretschner

2018

ACM Trans. Priv. Secur.

View full text Add to dashboard Cite

AcknowledgementsMy thanks go to• Prof. Pretschner. For introducing me to the academic world with all its diverse aspects: administrative matters, conferences, discussions, learning, reading, presentations, projects, reviewing, teaching, writing, pain and glory. For letting me work on an interesting thesis topic. For guidance, feedback, liberty, criticism and plaudits.• Prof. Katzenbeisser. For providing feedback on earlier partial results of this thesis.• all co-authors and internal reviewers. Alexander, Dominik, Enrico, Fatemeh, Hervais, Matthias, Mojdeh, Prachi, Saahil, Sebastian, Tobias. For teaching me how to collaboratively write scientific documents and how to cope best with endless discussions, reviews, corrections, rewriting, etc.• all remaining current and former colleagues and collaborators from KIT, TUM, • all project partners from TU Darmstadt, Universität Freiburg, Universität Kassel, Capurro Fiek Stiftung für Informationsethik, Fraunhofer SIT, Google Germany GmbH, Deutsche Post AG, Nokia, IBM, AGT International, DFKI, Seeburger, Stadtwerke Saarlouis. For innumerable interesting and diverse experiences.• all developers and authors of free tools and Q&A websites. For developing and maintaining software such as Eclipse, Firefox, Gimp, Gnome, Gnuplot, Inkscape, LaTeX, LibreOffice, Linux, StackExchange, Thunderbird, and many more.• all friends and family. Which are simply too many to enumerate. For constantly reminding me, both consciously and unconsciously, in countless ways that there is more to life than work and research. AbstractData usage control provides mechanisms for data owners to remain in control over how their data is used after it has been accessed. Corresponding technical solutions are thus applicable in many distinct areas such as the protection of business, military and government secrets, intellectual property, as well as private user data. However, most existing solutions focus on the enforcement of data usage control within single systems and disregard distributed aspects of data usage control, i.e. how the usage of data can be controlled once data has been shared across systems and organizations.In fact, many data usage policies can only be enforced on a global scale, as they refer to data as well as data usage events happening within several distributed systems, e.g. "at each point in time at most two clerks might have a local copy of this contract", or "a contract must be approved by at least two clerks before it is sent to the customer".While such policies can intuitively be enforced using a centralized infrastructure, major drawbacks are that such solutions constitute a single point of failure and that they are expected to cause heavy communication and performance overheads.In order to address these open challenges, this dissertation contributes by providing (i) a formal distributed data usage control system model, and (ii) the first fully decentralized infrastructure for the preventive enforcement of data usage policies. More precisely, the provided model allows to track the f...

show abstract

“…Since J. Park and R. Sandhu proposed the concept of Usage Control as the key spirit of next generation access control [2], a large amount of research has been being conducted with focus on its development and applications [3][4][5][6][7]. The authors themselves presented the core model of Usage Control as UCON ABC [1].…”

Section: Related Workmentioning

confidence: 99%

“…Park and R. Sandhu proposed a dynamic access control framework, called Usage Control, or UCON [1,2], to deal with the limitations of traditional access control models. The UCON model attracts world-wide attention and is regarded as the next generation access control model [3][4][5][6][7].…”

Section: Introductionmentioning

confidence: 99%

On Mutual Support of Modern and Traditional Access Control Models with UCON and BLP as Case Study

Feng

Shi

Liang

et al. 2011

2011 Third International Conference on Communications and Mobile Computing

View full text Add to dashboard Cite

Access control is essential to computer security, especially in an open, distributed, networked communication environment. Modern access control model such as UCON aims at accommodating general requirements. Traditional one such as BLP focuses on specific properties, e.g. confidentiality. Both of these two realms have their limitations. Taking UCON and BLP as case study, this paper explores mutual support of modern and traditional access control models. It investigates BLP's adaptable characteristic in the UCON perspective. First, it constructs properties in the UCON language to manifest the BLP adaptability, which shows that the BLP adaptability can be ensured to function correctly by the UCON framework. Further, it proposes a formal specification for the BLP adaptability under the UCON framework with the Temporal Logic of Actions, which demonstrates that the BLP adaptability is in good consistency with the UCON model. The significance of the paper is twofold. On the one hand, it exhibits that adaptable quality of the traditional BLP model may be ensured theoretically by the philosophy of modern access control. On the other hand, it enriches the real sense of modern access control models by strengthening the power of traditional access control models.

show abstract

Uclinux

Cited by 22 publications

References 8 publications

Usage control in computer security: A survey

Usage control in computer security: A survey

Data Usage Control for Distributed Systems

On Mutual Support of Modern and Traditional Access Control Models with UCON and BLP as Case Study

Contact Info

Product

Resources

About