Policy administration in tag-based authorization

S. Etalle, T.L. Hinrichs, A.J. Lee, D. Trivellato, N. Zannone

Onderzoeksoutput: Hoofdstuk in Boek/Rapport/CongresprocedureConferentiebijdrageAcademicpeer review

2 Citaten (Scopus)
3 Downloads (Pure)

Samenvatting

Tag-Based Authorization (TBA) is a hybrid access control model that combines the ease of use of extensional access control models with the expressivity of logic-based formalisms. The main limitation of TBA is that it lacks support for policy administration. More precisely, it does not allow policy-writers to specify administrative policies that constrain the tags that users can assign, and to verify the compliance of assigned tags with these policies. In this paper we introduce TBA2 (Tag-Based Authorization & Administration), an extension of TBA that enables policy administration in distributed systems. We show that TBA2 is more expressive than TBA and than two reference administrative models proposed in the literature, namely HRU and ARBAC97.
Originele taal-2Engels
TitelFoundations and Practice of Security (5th International Symposium, FPS 2012, Montreal, QC, Canada, October 25-26, 2012, Revised Selected Papers)
RedacteurenJ. Garcia-Alfaro, F. Cuppens, N. Cuppens-Boulahia, A. Miri, N. Tawbi
Plaats van productieBerlin
UitgeverijSpringer
Pagina's162-179
ISBN van geprinte versie978-3-642-37118-9
DOI's
StatusGepubliceerd - 2013
Evenementconference; 5th International Symposium on Foundations and Practice of Security; 2012-10-25; 2012-10-26 -
Duur: 25 okt 201226 okt 2012

Publicatie series

NaamLecture Notes in Computer Science
Volume7743
ISSN van geprinte versie0302-9743

Congres

Congresconference; 5th International Symposium on Foundations and Practice of Security; 2012-10-25; 2012-10-26
Periode25/10/1226/10/12
Ander5th International Symposium on Foundations and Practice of Security

Vingerafdruk

Duik in de onderzoeksthema's van 'Policy administration in tag-based authorization'. Samen vormen ze een unieke vingerafdruk.

Citeer dit