A uniform and precise framework for the specification of access control policies is proposed. The uniform framework allows the detailed comparison of different policy models, the precise description of the evolution of a policy, and an accurate analysis of the interaction between policies and of the behavior of their integration. The evolution and integration of policies are illustrated using a Discretionary Access Control policy and a Lattice Based Access Control policy. The framework is based on the theory of graph transformations.
On the Specification and Evolution of Access Control Policies / Koch, M.; Mancini, Luigi Vincenzo; PARISI PRESICCE, Francesco. - STAMPA. - (2001), pp. 121-130. (Intervento presentato al convegno 6th ACM symposium on Access control models and technologies tenutosi a Chantilly, Virginia, USA nel May 2001) [10.1145/373256.373280].
On the Specification and Evolution of Access Control Policies
MANCINI, Luigi Vincenzo;PARISI PRESICCE, Francesco
2001
Abstract
A uniform and precise framework for the specification of access control policies is proposed. The uniform framework allows the detailed comparison of different policy models, the precise description of the evolution of a policy, and an accurate analysis of the interaction between policies and of the behavior of their integration. The evolution and integration of policies are illustrated using a Discretionary Access Control policy and a Lattice Based Access Control policy. The framework is based on the theory of graph transformations.I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.