P. Bonatti, S. De Capitani di Vimercati, and P. Samarati. A modular approach to composing access control policies. In Proc. of Seventh ACM Computer and Communication Security, pages 164--173, Athens, Greece, November 2000.  Home/Search   Document Not in Database   Summary   Related Articles   Check

....bound by a set of di#erent contracts that regulate the trading relations with its various clients and suppliers. There are currently two main methods to establish a set of policies: 1) to establish a dedicated server for each policy [8, 15, 14] and (2) to combine them into a single super policy [4, 5]. We will argue that both approaches are problematic in e commerce context. Having a dedicated server for each contract is an expensive proposition, if the number contracts an enterprise is bound by is very large . This is increasingly the case for many modern enterprises. For example, Ford ....

P. Bonatti, S. De Capitani di Vimercati, and P. Samarati. A modular approach to composing access control policies. In Proc. of the Seventh ACM Conference on Computer and Communications Security, pages 164 -- 173, Athens, Greece, 2000.

....primitives. Update requests should be specified in a designated policy language, which provides flexibility by taking information from the environment and the current knowledge base into account. We note that similar approaches have been developed in the area of network management and security [26, 10, 9, 6]. For nonmonotonic knowledge bases represented as (nonmonotonic) logic programs, the LUPS language of dynamic updates [3, 4] has been proposed as a general and flexible language for expressing different kinds of operations for changing the knowledge base, such as adding or removing a clause from ....

P. Bonatti, S. De Capitani di Vimercati, and P. Samarati. A modular approach to composing access control policies. In Proc. 7th ACM Conf. on Computer and Communications Security (CCS 2000.

....o#cer. In [2] a flexible authorization mechanism is described but the well known grantor strategy to pass rights is not very suitable for file systems. The ARGOS system [6] may impose global authorization rules to subordinate component systems in a federated data base system environment. In [3] an algebra for composing security policies is presented. This is done through combining rules that positively specify access rights to objects. There is no capability in their language to state, express, or evaluate conflicts. A major advantage of our approach, on the other hand, is that ....

P. Bonatti, S. de Capitani di, and P. Samarati. A modular approach to composing access control policies. In Proceedings of the 7th ACM conference on Computer and communications security, pages 164 -- 173, Athens Greece, nov 2000. ACM Press.

....ocer. In [BJS99] a exible authorization mechanism is described but the well known grantor strategy to pass rights is not very suitable for le systems. The ARGOS system [JD96] may impose global authorization rules to subordinate component systems in a federated data base system environment. In [BdCdS00] an algebra for composing security policies is presented. This is done through combining rules that positively specify access rights to objects. There is no capability in their language to state, express, or evaluate con icts. A major advantage of our approach, on the other hand, is that con icts ....

Piero Bonatti, Sabrina de Capitani di, and Pierangela Samarati. A modular approach to composing access control policies. In Proceedings of the 7th ACM conference on Computer and communications security, pages 164 - 173, Athens Greece, nov 2000. ACM Press.

No context found.

P. Bonatti, S. De Capitani di Vimercati, and P. Samarati. A modular approach to composing access control policies. In Proc. of Seventh ACM Computer and Communication Security, pages 164--173, Athens, Greece, November 2000.

No context found.

P. Bonatti, S. De Capitani di Vimercati, and P. Samarati. A modular approach to composing access control policies. In Proc. of the Seventh ACM Conference on Computer and Communications Security, Athens, Greece, 2000.

No context found.

P. A. Bonatti, S. De Capitani di Vimercati, and P. Samarati. A modular approach to composing access control policies. In Proc. 7th ACM Conference on Computer and Communications Security, pages 164--173, 2000.

No context found.

P. Bonatti, S. Vimercati, and P. Samarati. A modular approach to composing access control policies. In ACM Conference on Computer and Communication Security, Athens, Greece, Nov. 2000.

No context found.

P. Bonatti, S. Vimercati, and P. Samarati. A Modular Approach to Composing Access Control Policies. In ACM Conference on Computer and Communication Security, Athens, Greece, Nov. 2000.

No context found.

P. Bonatti, S. D. Vimercati, and P. Samarati. A modular approach to composing access control policies. In Proceedings of the 7th ACM conference on Computer and communications security, pages 164--173, 2000.

No context found.

P. Bonatti, S. Vimercati, and P. Samarati. A modular approach to composing access control policies. In ACM Conference on Computer and Communication Security, Athens, Greece, Nov. 2000.

No context found.

P. A. Bonatti, S. De Capitani di Vimercati, and P. Samarati. A modular approach to composing access control policies. In Proc. 7th ACMConference on Computer and Communications Security, pages 164--173, 2000.

No context found.

P. Bonatti, S. de Capitani di Vimercati, and P. Samarati. A Modular Approach to Composing Access Control Policies. In Proc. of 7th ACM Conference on Computer and Communication Security, pages 164--173. ACM, 2000.

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC