Specification and enforcement of flexible security policy for active cooperation
文献类型:期刊论文
| 作者 | Sun, Yuqing1; Gong, Bin1; Meng, Xiangxu1; Lin, Zongkai4; Bertino, Elisa2,3 |
| 刊名 | INFORMATION SCIENCES
 |
| 出版日期 | 2009-07-04 |
| 卷号 | 179期号:15页码:2629-2642 |
| 关键词 | Security policy Access control Flexibility Cooperation RBAC |
| ISSN号 | 0020-0255 |
| DOI | 10.1016/j.ins.2009.01.040 |
| 英文摘要 | Interoperation and services sharing among different systems are becoming new paradigms for enterprise collaboration. To keep ahead in strong competition environments, an enterprise should provide flexible and comprehensive services to partners and support active collaborations with partners and customers. Achieving such goals requires enterprises to specify and enforce flexible security policies for their information systems. Although the area of access control has been widely investigated, current approaches still do not support flexible security policies able to account for different weighs that typically characterize the various attributes of the requesting parties and transactions and reflect the access control criteria that are relevant for the enterprise. In this paper we propose a novel approach that addresses such flexibility requirements while at the same time reducing the complexity of security management. To support flexible policy specification, we define the notion of restraint rules for authorization management processes and introduce the concept of impact weight for the conditions in these restraint rules. We also introduce a new data structure for the encoding of the condition tree as well as the corresponding algorithm for efficiently evaluating conditions. Furthermore, we present a system architecture that implements above approach and supports interoperation among heterogeneous platforms. (C) 2009 Elsevier Inc. All rights reserved. |
| WOS研究方向 | Computer Science |
| 语种 | 英语 |
| WOS记录号 | WOS:000267086700011 |
| 出版者 | ELSEVIER SCIENCE INC |
| 源URL | [http://119.78.100.204/handle/2XEOYT63/11873]  |
| 专题 | 中国科学院计算技术研究所期刊论文_英文 |
| 通讯作者 | Sun, Yuqing |
| 作者单位 | 1.Shandong Univ, Sch Comp Sci & Technol, Jinan 250100, Shandong, Peoples R China 2.Purdue Univ, Dept Comp Sci, W Lafayette, IN 47907 USA 3.Purdue Univ, CERIAS, W Lafayette, IN 47907 USA 4.Chinese Acad Sci, Inst Comp Technol, Beijing, Peoples R China |
| 推荐引用方式 GB/T 7714 | Sun, Yuqing,Gong, Bin,Meng, Xiangxu,et al. Specification and enforcement of flexible security policy for active cooperation[J]. INFORMATION SCIENCES,2009,179(15):2629-2642. |
| APA | Sun, Yuqing,Gong, Bin,Meng, Xiangxu,Lin, Zongkai,&Bertino, Elisa.(2009).Specification and enforcement of flexible security policy for active cooperation.INFORMATION SCIENCES,179(15),2629-2642. |
| MLA | Sun, Yuqing,et al."Specification and enforcement of flexible security policy for active cooperation".INFORMATION SCIENCES 179.15(2009):2629-2642. |
入库方式: OAI收割
来源:计算技术研究所
浏览0
下载0
收藏0
其他版本
除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。