Privacy-aware role-based access control
In this article, we introduce a comprehensive framework supporting a privacy-aware access
control mechanism, that is, a mechanism tailored to enforce access control to data …
control mechanism, that is, a mechanism tailored to enforce access control to data …
Expressive policy analysis with enhanced system dynamicity
Despite several research studies, the effective analysis of policy based systems remains a
significant challenge. Policy analysis should at least (i) be expressive (ii) take account of …
significant challenge. Policy analysis should at least (i) be expressive (ii) take account of …
PTaCL: A language for attribute-based access control in open systems
J Crampton, C Morisset - Principles of Security and Trust: First …, 2012 - Springer
Many languages and algebras have been proposed in recent years for the specification of
authorization policies. For some proposals, such as XACML, the main motivation is to …
authorization policies. For some proposals, such as XACML, the main motivation is to …
Rumpole: a flexible break-glass access control model
Access control operates under the assumption that it is possible to correctly encode and
predict all subjects' needs and rights. However, in human-centric pervasive domains, such …
predict all subjects' needs and rights. However, in human-centric pervasive domains, such …
[HTML][HTML] The logic of XACML
CDPK Ramli, HR Nielson, F Nielson - Science of Computer Programming, 2014 - Elsevier
We study the international standard XACML 3.0 for describing security access control
policies in a compositional way. Our main contributions are (i) to derive a logic that precisely …
policies in a compositional way. Our main contributions are (i) to derive a logic that precisely …
Access control via Belnap logic: Intuitive, expressive, and analyzable policy composition
Access control to IT systems increasingly relies on the ability to compose policies. Hence
there is benefit in any framework for policy composition that is intuitive, formal (and so …
there is benefit in any framework for policy composition that is intuitive, formal (and so …
D-algebra for composing access control policy decisions
This paper proposes a D-algebra to compose decisions from multiple access control
policies. Compared to other algebra-based approaches aimed at policy composition, D …
policies. Compared to other algebra-based approaches aimed at policy composition, D …
Towards an access-control framework for countering insider threats
J Crampton, M Huth - Insider Threats in Cyber Security, 2010 - Springer
As insider threats pose very significant security risks to IT systems, we ask what policy-based
approaches to access control can do for the detection, mitigation or countering of insider …
approaches to access control can do for the detection, mitigation or countering of insider …
[PDF][PDF] Exploiting privacy policy conflicts in online social networks
ABSTRACT Online Social Networks (OSNs) offer access control mechanisms to protect
users' sensitive information from undesired accesses. Yet, their information is still vulnerable …
users' sensitive information from undesired accesses. Yet, their information is still vulnerable …
The logic of XACML
CDP Kencana Ramli, HR Nielson, F Nielson - International Workshop on …, 2011 - Springer
We study the international standard XACML 3.0 for describing security access control policy
in a compositional way. Our main contribution is to derive a logic that precisely captures the …
in a compositional way. Our main contribution is to derive a logic that precisely captures the …