Institute of Computing Technology, Chinese Academy IR
| Specification and enforcement of flexible security policy for active cooperation | |
| Sun, Yuqing1; Gong, Bin1; Meng, Xiangxu1; Lin, Zongkai4; Bertino, Elisa2,3 | |
| 2009-07-04 | |
| 发表期刊 | INFORMATION SCIENCES
 |
| ISSN | 0020-0255 |
| 卷号 | 179期号:15页码:2629-2642 |
| 摘要 | Interoperation and services sharing among different systems are becoming new paradigms for enterprise collaboration. To keep ahead in strong competition environments, an enterprise should provide flexible and comprehensive services to partners and support active collaborations with partners and customers. Achieving such goals requires enterprises to specify and enforce flexible security policies for their information systems. Although the area of access control has been widely investigated, current approaches still do not support flexible security policies able to account for different weighs that typically characterize the various attributes of the requesting parties and transactions and reflect the access control criteria that are relevant for the enterprise. In this paper we propose a novel approach that addresses such flexibility requirements while at the same time reducing the complexity of security management. To support flexible policy specification, we define the notion of restraint rules for authorization management processes and introduce the concept of impact weight for the conditions in these restraint rules. We also introduce a new data structure for the encoding of the condition tree as well as the corresponding algorithm for efficiently evaluating conditions. Furthermore, we present a system architecture that implements above approach and supports interoperation among heterogeneous platforms. (C) 2009 Elsevier Inc. All rights reserved. |
| 关键词 | Security policy Access control Flexibility Cooperation RBAC |
| DOI | 10.1016/j.ins.2009.01.040 |
| 收录类别 | SCI |
| 语种 | 英语 |
| WOS研究方向 | Computer Science |
| WOS类目 | Computer Science, Information Systems |
| WOS记录号 | WOS:000267086700011 |
| 出版者 | ELSEVIER SCIENCE INC |
| 引用统计 | |
| 文献类型 | 期刊论文 |
| 条目标识符 | http://119.78.100.204/handle/2XEOYT63/11874 |
| 专题 | 中国科学院计算技术研究所期刊论文_英文 |
| 通讯作者 | Sun, Yuqing |
| 作者单位 | 1.Shandong Univ, Sch Comp Sci & Technol, Jinan 250100, Shandong, Peoples R China 2.Purdue Univ, Dept Comp Sci, W Lafayette, IN 47907 USA 3.Purdue Univ, CERIAS, W Lafayette, IN 47907 USA 4.Chinese Acad Sci, Inst Comp Technol, Beijing, Peoples R China |
| 推荐引用方式 GB/T 7714 | Sun, Yuqing,Gong, Bin,Meng, Xiangxu,et al. Specification and enforcement of flexible security policy for active cooperation[J]. INFORMATION SCIENCES,2009,179(15):2629-2642. |
| APA | Sun, Yuqing,Gong, Bin,Meng, Xiangxu,Lin, Zongkai,&Bertino, Elisa.(2009).Specification and enforcement of flexible security policy for active cooperation.INFORMATION SCIENCES,179(15),2629-2642. |
| MLA | Sun, Yuqing,et al."Specification and enforcement of flexible security policy for active cooperation".INFORMATION SCIENCES 179.15(2009):2629-2642. |
| 条目包含的文件 | 条目无相关文件。 | |||||
除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。
修改评论