Treffer: Incorporating dynamic constraints in the flexible authorization framework

Title:
Incorporating dynamic constraints in the flexible authorization framework
Authors:
SHIPING CHEN, WIJESEKERA, Duminda, JAJODIA, Sushil
Source:
Computer security (Sophia Antipolis, 13-15 September 2004)Lecture notes in computer science. :1-16
Publisher Information:
Berlin: Springer, 2004.
Publication Year:
2004
Physical Description:
print, 25 ref
Original Material:
INIST-CNRS
Subject Terms:
Computer science, Informatique, Sciences exactes et technologie, Exact sciences and technology, Sciences appliquees, Applied sciences, Informatique; automatique theorique; systemes, Computer science; control theory; systems, Logiciel, Software, Systèmes informatiques et systèmes répartis. Interface utilisateur, Computer systems and distributed systems. User interface, Organisation des mémoires. Traitement des données, Memory organisation. Data processing, Gestion des mémoires et des fichiers (y compris la protection et la sécurité des fichiers), Memory and file management (including protection and security), Architecture logiciel, Software architecture, Autorisation, Licence procedure, Autorización, Compilation, Compilación, Contrôle accès, Access control, Norme sécurité, Safety standard, Norma seguridad, Programmation logique avec contrainte, Constraint logic programming, Programación lógica con restricción, Programmation logique, Logical programming, Programación lógica, Système réparti, Distributed system, Sistema repartido, Système sécurité, Safety systems, Sécurité informatique, Computer security, Seguridad informatica
Document Type:
Konferenz Conference Paper
File Description:
text
Language:
English
Author Affiliations:
Center for Secure Information Systems, George Mason University, Fairfax, VA 22030-4444, United States
ISSN:
0302-9743
Access URL:
http://pascal-francis.inist.fr/vibad/index.php?action=search&terms=16144671
Rights:
Copyright 2004 INIST-CNRS
CC BY 4.0
Sauf mention contraire ci-dessus, le contenu de cette notice bibliographique peut être utilisé dans le cadre d’une licence CC BY 4.0 Inist-CNRS / Unless otherwise stated above, the content of this bibliographic record may be used under a CC BY 4.0 licence by Inist-CNRS / A menos que se haya señalado antes, el contenido de este registro bibliográfico puede ser utilizado al amparo de una licencia CC BY 4.0 Inist-CNRS
Notes:
Computer science; theoretical automation; systems
Accession Number:
edscal.16144671
Database:
PASCAL Archive

Weitere Informationen

Constraints are an integral part of access control policies. Depending upon their time of enforcement, they are categorized as static or dynamic; static constraints are enforced during the policy compilation time, and the dynamic constraints are enforced during run time. While there are several logic-based access control policy frameworks, they have a limited power in expressing and enforcing constraints (especially the dynamic constraints). We propose dynFAF, a constraint logic programming based approach for expressing and enforcing constraints. To make it more concrete, we present our approach as an extension to the flexible authorization framework (FAF) of Jajodia et al. [17]. We show that dynFAF satisfies standard safety and liveliness properties of a safety conscious software system.