Title :
A policy-based security model for Web system
Author :
Xie, Weixing ; Ma, Huadong
Author_Institution :
Sch. of Comput. Sci. & Technol., Beijing Univ. of Posts & Telecommun., China
Abstract :
The browser/server-based software development model is a popular way to for the application on the Internet. Thus, there are more and more software systems based on this framework, such as electronic commerce, electronic government, management information system. However, the security becomes the key factor to the application system on Web. Security policy is the bedrock to implement system security in variable circumstances. In this paper, we try to create a method to measure security degree by some tools such as fuzzy assessment and graph theory, then stipulate for security policy. This method provides a new way to analyse system security. This policy-based security model for Web application improves the adaptability and evolvement of secure system.
Keywords :
Internet; fuzzy set theory; telecommunication security; Internet; Web system; electronic commerce; electronic government; fuzzy assessment; graph theory; management information system; security degree; security policy; server-based software development model; Application software; Computer science; Graph theory; Information security; Internet; Mathematics; National security; Programming; Protocols; Software systems;
Conference_Titel :
Communication Technology Proceedings, 2003. ICCT 2003. International Conference on
Print_ISBN :
7-5635-0686-1
DOI :
10.1109/ICCT.2003.1209065
