A compositional framework for access control policies enforcement
The paper is a deliverable for the DIF-DTC project "Secure and Trusted Agents for Information Fusion". The aim of the project was to develop a dynamic security policy framework. Enforcing multiple policies is a challenge in order to achieve the level of security required in many real-world systems. This paper presents a formal model for the compositional specification of mulitiple policies. The framework has been extended to deal with dynamic policies that change over time or on the occurrence of events and is currently extended to deal with trust. The paper has been cited 17 times according to Google Scholar.
Citation : Cau, A.G., Siewe, F. and Zedan, H. (2003) A compositional framework for access control policies enforcement, proceedings of the ACM workshop on formal methods in security engineering from specifications to code, pp. 32-42.
ISBN : 1-58113-781-8
Research Group : Software Technology Research Laboratory (STRL)
Research Institute : Cyber Technology Institute (CTI)