See this document in CiteSeerX!

Security Policy Enforcement in the Antigone System (2005)  (Make Corrections)  
Patrick McDaniel, Atul Prakash



  Home/Search   Context   Related

 
View or download:
psu.edu/pubs/jcs05.pdf


From:  psu.edu/papers (more)
(Enter author homepages)

Rate this article: (best)
  Comment on this article  
(Enter summary)

Abstract: Works in communication security policy have recently focused on general-purpose policy languages and evaluation algorithms. However, because the supporting frameworks often defer enforcement, the correctness of a realization of these policies in software is limited by the quality of domain-specific implementations. This paper introduces the Antigone communication security policy enforcement framework. The Antigone framework fills the gap between representations and enforcement by... (Update)

Similar documents (at the sentence level):
7.9%:   A Flexible Architecture for Security Policy Enforcement - McDaniel, Prakash   (Correct)

Active bibliography (related documents):   More   All
1.1:   Flexibly Constructing Secure Groups in Antigone 2.0 - McDaniel, Prakash, Irrer.. (2001)   (Correct)
1.0:   On Context in Authorization Policy - McDaniel (2003)   (Correct)
0.7:   Methods and Limitations of Security Policy Reconciliation - McDaniel, Prakash (2002)   (Correct)

Similar documents based on text:
5.0:   Unknown -   (Correct)

BibTeX entry:   (Update)

@misc{ mcdaniel-security,
  author = "Patrick McDaniel and Atul Prakash",
  title = "Security Policy Enforcement in the Antigone System",
  url = "citeseer.ist.psu.edu/mcdaniel05security.html" }
Citations (may not include all citations):
833   A Reliable Multicast Framework for Light-weight Sessions and.. - Floyd, Jacobson et al. - 1997
412   Security Architecture for the Internet Protocol (context) - Kent, Atkinson - 1998
305   Decentralized Trust Management - Blaze, Feigenbaum et al. - 1996
244   Kernel: An Architecture for Implementing Network Protocols (context) - Hutchinson, Peterson - 1994
218   CORBA: Integrating Diverse Applications Within Distributed H.. - Vinoski - 1994
178   Kerberos: An Authentication Service for Computer Networks (context) - Neuman, Ts'o - 1994
155   Secure Computer Systems: Mathematical Foundations and Model (context) - Bell, LaPadula - 1973
151   Secure Group Communication Using Key Graphs - Wong, Gouda et al. - 1998
142   Key Management for Multicast: Issues and Architectures (context) - Wallner, Harder et al. - 1999
121   Secure Agreement Protocols: Reliable and Atomic Group Multic.. - Reiter - 1994
109   The KeyNote Trust Management System - Version (context) - Blaze, Feignbaum et al. - 1999
104   The Jini Architecture for Network-centric Computing - Waldo - 1999
73   Role-based access control models - Sandhu, Coyne et al. - 1996
71   IP Encapsulating Security Payload (context) - Kent, Atkinson - 1998
68   Antigone: A Flexible Framework for Secure Group Communicatio.. - McDaniel, Prakash et al. - 1999
61   How to Sign Digital Streams - Gennaro, Rohatgi - 1997
60   ACM Transactions on Programming Languages and Systems (context) - Purtilo, software - 1994
60   Coyote: A System for Constructing Fine-Grain Configurable Co.. - Bhatti, Hiltunen et al. - 1998
59   Implementing a Distributed Firewall - Ioannidis, Keromytis et al. - 2000
59   Key Establishment in Large Dynamic Groups Using One-Way Func.. - McGrew, Sherman - 1998
56   SSH - Secure Login Connections Over the Internet - Ylonen - 1996
55   Lattice-based access control models - Sandhu - 1993
55   Adaptive: A Dynamically Assembled Protocol Transformation - Schmidt, Fox et al. - 1993
50   COM and DCOM: Microsoft's Vision for Distributed Objects (context) - Sessions - 1997
39   Authorization in Distributed Systems; A New Approach - Woo, Lam - 1993
39   Configuration Programming - A Framework for the Development .. - Kramer - 1990
32   A Configurable Membership Service - Hiltunen, Schlichting - 1998
31   ective Erasure Codes for Reliable Computer Communication Pro.. (context) - Rizzo - 1997
29   The Internet Key Exchange. Internet Engineering Task Force (context) - Harkins, Carrel - 1998
26   Firmato: A novel firewall management toolkit - Bartal, Mayer et al. - 1999
25   Common Open Policy Service) Protocol (context) - Durham, Boyle et al. - 2000
22   Secure Group Communication in Asynchronous Networks with Fai.. - Amir, Ateniese et al. - 2000
19   The Specification and Modeling of Computer Security - McLean - 1990
18   Representation and Evaluation of Security Policies for Distr.. - Ryutov, Neuman - 2000
18   The slab allocator: An object-caching kernel memory allocato.. - Bonwick - 1994
15   Dynamic Configuration of Conferencing Applications using Pat.. - Schulzrinne - 1995
12   Secure Software Architectures - Moriconi, Qian et al. - 1997
11   Fileteller: Paying and Getting Paid for File Storage - Ioannidis, Ioannidis et al. - 2002
11   A Java Beans Component Architecture for Cryptographic Protoc.. - Nikander, Karila - 1998
10   Distributed Firewalls - Bellovin - 1999
9   The STRONGMAN Architecture - Keromytis, Ioannidis et al. - 2003
8   Group Secure Association Key Management Protocol - Harney, Colegrove et al. - 2000
8   Domain Based Internet Security Policy Management (context) - Zao, Sanchez et al. - 2000
8   Paving the Road to Network Security or the Value of Small Co.. - Orman, O'Malley et al. - 1994
7   Methods and Limitations of Security Policy Reconciliation - McDaniel, Prakash - 2002
7   Multicast Security: A Taxonomy and E#cient Constructions (context) - Canetti, Garay et al. - 1999
7   The Message Bus: A Platform for Componentbased Conferencing .. (context) - Ott, Kutscher et al.
7   Policy Management in Secure Group Communication (context) - McDaniel - 2001
6   Secure Distributed Virtual Conferencing - Adamson, Antonelli et al. - 1999
5   A Survey of Multicast Security Issues and Architectures (context) - Kruus - 1998
4   Multidimensional Security Policy Management for Dynamic Coal.. - Patz, Condell et al. - 2001
4   Flexibly Constructing Secure Groups in Antigone - McDaniel, Prakash et al. - 2001
4   Overcast: Reliable Multicasting with an Overlay Network (context) - Janotti, Gi et al. - 2000
3   Fine-Grain Configurability for Secure Communication - Hiltunen, Jaiprakash et al. - 2000
3   Integrated Access Control and Intrusion Detection for Web Se.. (context) - Ryutov, ord et al. - 2003
3   Internet Engineering Task Force (context) - Harney, Muckenhirn et al. - 1997
1   University of Michigan (context) - Research - 2002
1   rpcgen - An RPC Protocol Compiler (context) - Unix, Sun - 1988
1   Securing Distributed Applications Using a Policy-based Appro.. (context) - McDaniel, Prakash - 2003

Documents on the same site (http://siis.cse.psu.edu/papers.html):   More
Privacy Preserving Clustering - Jha Kruger And   (Correct)
Origin Authentication in Interdomain Routing - William Aiello Aiello (2003)   (Correct)
Secure Reporting of Traffic Forwarding Activity in Mobile.. - Heesook Choi William   (Correct)

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC