HORST, F. W., LISCHKA, M. (2001). Modular Authorization. In: Proceedings of the Sixth ACM Symposium on Access control models and technologies.  Home/Search   Document Details and Download   Summary   Related Articles   Check

....authorization languages, such as [2, 8] for example, are very expressive and flexible to use, they do not support all required elements of a privacy policy. Therefore we implemented our privacy language within the Flexible Authorization Framework (FAF) 8] enriched with the notions of grantors [2, 15] and obligations [7, 11] Conditions impose restrictions on the use of the collected data, such as modeling guardian consent and options, or narrowing the set of accessing principals. Access decisions are extended with obligations, which list a set of activities that must be executed together with ....

....form from the parent via postal mail or facsimile. 4 Formalization of a Privacy Policy In this section, we formalize the privacy policy model described in the previous section, using the logical framework of the Authorization Specification Language ASL [8] extended with the notion of grantors [2, 15] and obligations [7] 4.1 Data System The data system of our privacy model consists of users groups, the data they are accessing, together with the purposes they act for, and the access modes they use. In particular, we define data items or groups of data items via the triple OTH = #Obj, T, ....

H. Wedde and M. Lischka. Modular authorization. In 6th ACM Symposium on Access Control Models and Technologies (SACMAT 2001.

....in access control systems are required to fullfil the needs of new Internet applications. An interesting system for policybased management of networks and distributed systems is presented in [7] The separation of the policy specification from the access control implementation has been proposed in [8]. This separation follows the network centric approach of Roscheisen and Winograd [9] and allows the policy to be modified dynamically, without changing its underlying implementation [10] Other access control languages have been developed in the security community to support di#erent access ....

Wedde, H.F., Lischka, M.: Modular Authorization. In: Proc. of the 6 ACM Symposium on Access Control Models and Technologies (SACMAT) (2001)

....that in an organization there may be hundreds of roles and many thousands of access rules needed any centralized form of access control or administration is an enormous bottleneck, inadequate for an e#cient, flexible, and reliable authorization service. Hence we had based our extended RBAC concept [14] on a hybrid control model. Access control is managed through authorization teams exercising control over a hierarchically structured set of subsets of organizational units (departments, projects, task forces) termed authorization spheres. Access control in Modular Authorization is specified ....

....spheres. Access control in Modular Authorization is specified through a layered approach of predicate logic formulas such that even substantially complex authorization procedures stemming from cooperation between di#erent authorization spheres can be conveniently managed (as to be found in [14]) It is also possible to specify joined authorization spheres between di#erent organizations [15] If groups of experts cooperate across departmental boundaries the access to objects with a shared ownership between the experts may be granted to a distributed user community. However, the members ....

[Article contains additional citation context not shown here]

H. F. Wedde and M. Lischka. Modular Authorization. In Proceedings of the 6th ACM Symposium on Access Control Models and Technologies (SACMAT), pages 97--105, Chantilly, Virginia, May 3-4 2001. ACM, ACM Press.

No context found.

HORST, F. W., LISCHKA, M. (2001). Modular Authorization. In: Proceedings of the Sixth ACM Symposium on Access control models and technologies.

No context found.

Horst, F. W., Lischka, M.: Modular Authorization. Proceedings of ACM SACMAT (2001)

No context found.

HORST, F. W., LISCHKA, M. (2001). Modular Authorization. In: Proceedings of the Sixth ACM Symposium on Access control models and technologies.

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC