Separation of duties in computerized information systems (1991) [39 citations — 4 self]

Download:

by Ravi Sandhu

In Database Security IV: Status and Prospects

http://www.list.gmu.edu/confrnc/ifip/ps_ver/i90sep.ps

Add To MetaCart

Popular Tags

No tags have been applied to this document.

BibTeX | Add To MetaCart

@INPROCEEDINGS{Sandhu91separationof,
    author = {Ravi Sandhu},
    title = {Separation of duties in computerized information systems},
    booktitle = {In Database Security IV: Status and Prospects},
    year = {1991},
    pages = {179--189},
    publisher = {North-Holland}
}

Years of Citing Articles

Abstract:

We describe a novel general-purpose mechanism for enforcing separation of duties in computerized information systems. This mechanism of transaction control expressions has close similarities to traditional controls in manual paper-based systems. It has the great benefit of intuitive simplicity, in both concept and implementation. 1

Citations

297	A comparison of commercial and military computer security policies – Clark, Wilson - 1987
251	Integrity considerations for secure computer systems – Biba - 1977
166	Notes on data base operating systems – GRAY - 1978
107	A Practical Alternative to Hierarchical Integrity Policies – Boebert, Kain - 1985
68	Transaction control expressions for separation of duties – Sandhu - 1988
42	Some Conundrums Concerning Separation of Duty – Nash, Poland - 1990
25	Using mandatory integrity to enforce \commercial" security – Lee - 1988
15	The NTree: A two dimension partial order for protection groups – Sandhu - 1988
15	Integrity Mechanisms in Database Management Systems – Sandhu, Jajodia - 1990
13	Using mandatory integrity to enforce "commercial" security – Lee - 1988
12	Evolution of a Model for Computer Integrity – Clark, Wilson - 1989
11	Implementing commercial data integrity with secure capabilities – Karger - 1988
9	A Large-Scale Interactive Administrative System – Wimbrow - 1971
8	Implementing the Clark/Wilson integrity policy using current technology – Schockley - 1988
6	A `New' Security Policy Model – Terry, Wiseman - 1989
4	Access-Right Expressions – Kieburtz, Silberschatz - 1983
3	An Operation-Control Scheme for Authorization in Computer Systems – Minsky - 1978
2	Recognizing Immediacy in an NTree Hierarchy and its Application to Protection Groups – Sandhu - 1989
1	A Practical Alternative to Hierarchical IntegrityPolicies – Boebert, Kain - 1985
1	Resource Access Control Facility (RACF) General Information Manual – Corporation - 1987

View or Download | Add to My Collection | Correct Errors