Flow policies: Specification and enforcement

被引：0

作者：

Bertino, E ^{[1
]}

Ferrari, E ^{[1
]}

Mella, G ^{[1
]}

机构：

[1] Purdue Univ, CERIAS, W Lafayette, IN 47907 USA

来源：

CONFERENCE PROCEEDINGS OF THE 2004 IEEE INTERNATIONAL PERFORMANCE, COMPUTING, AND COMMUNICATIONS CONFERENCE | 2004年

关键词：

D O I：

暂无

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

This paper deals with the problem of secure cooperative updates for XML documents in distributed systems. In particular, we introduce the basic notions underlying a flow language by using which a user can specify the flow that a given XML document has to follow within a group of cooperating subjects. A key feature of the flow language is to be based on the notion of subject credentials. In addition, we describe a policy language to specify special-purpose authorizations allowing selected subjects to modify or extend a given document flow. Finally, we briefly describe the protocols for verifying that the path followed by a document in a collaborative group agrees with the specified flow and to verify that modifications on a given flow are in accordance with the specified authorizations.

引用

页码：681 / 686

页数：6

共 50 条

[1] The specification and enforcement of advanced security policies
Ryutov, T
Neuman, C
[J]. THIRD INTERNATION WORKSHOP ON POLICIES FOR DISTRIBUTED SYSTEMS AND NETWORKS, PROCEEDINGS, 2002, : 128 - 138
[2] Specification and runtime enforcement of security policies
Jin, Ying
Zhang, Jing
Zheng, Xiaojuan
[J]. 2007 IFIP INTERNATIONAL CONFERENCE ON NETWORK AND PARALLEL COMPUTING WORKSHOPS, PROCEEDINGS, 2007, : 244 - +
[3] Specification and Enforcement of Dynamic Authorization Policies oriented by Situations
Kabbani, Bashar
Laborde, Romain
Barrere, Francois
Benzekri, Abdelmalek
[J]. 2014 6TH INTERNATIONAL CONFERENCE ON NEW TECHNOLOGIES, MOBILITY AND SECURITY (NTMS), 2014,
[4] A Rigorous Framework for Specification, Analysis and Enforcement of Access Control Policies
Margheri, Andrea
Masi, Massimiliano
Pugliese, Rosario
Tiezzi, Francesco
[J]. IEEE TRANSACTIONS ON SOFTWARE ENGINEERING, 2019, 45 (01) : 2 - 33
[5] Principles of Data Flow Integrity: Specification and Enforcement
Ramezanifarkhani, Toktam
Razzazi, Mohammadreza
[J]. JOURNAL OF INFORMATION SCIENCE AND ENGINEERING, 2015, 31 (02) : 529 - 546
[6] Specification and Enforcement of Static Separation-of-Duty Policies in Usage Control
Lu, Jianfeng
Li, Ruixuan
Lu, Zhengding
Hu, Jinwei
Ma, Xiaopu
[J]. INFORMATION SECURITY, PROCEEDINGS, 2009, 5735 : 403 - 410
[7] Semantics and Enforcement of Expressive Information Flow Policies
Banerjee, Anindya
[J]. FORMAL ASPECTS IN SECURITY AND TRUST, 2010, 5983 : 1 - 3
[8] A Framework for the Cryptographic Enforcement of Information Flow Policies
Alderman, James
Crampton, Jason
Farley, Naomi
[J]. PROCEEDINGS OF THE 22ND ACM SYMPOSIUM ON ACCESS CONTROL MODELS AND TECHNOLOGIES (SACMAT'17), 2017, : 143 - 154
[9] Semantic Security: Specification and Enforcement of Semantic Policies for Security-driven Collaborations
Sinnott, R. O.
Doherty, T.
Gray, N.
Lusted, J.
[J]. HEALTHGRID RESEARCH, INNOVATION AND BUSINESS CASE, 2009, 147 : 201 - +
[10] Consistency analysis and flow secure enforcement of SELinux policies
Radhika, B. S.
Kumar, N. V. Narendra
Shyamasundar, R. K.
Vyas, Parjanya
[J]. COMPUTERS & SECURITY, 2020, 94

← 1 2 3 4 5 →