Label-Based Access Control Policy Enforcement and Management

Author

Zhou, Wei ; Raja, Vinesh H. ; Meinel, Christoph ; Ahmad, Munir

Author_Institution

Sch. of Eng., Warwick Univ.

fYear

2006

fDate

19-20 June 2006

Firstpage

395

Lastpage

400

Abstract

To effectively participate in modern collaborations, member organizations must be able to share specific data and functionality with collaboration partners, while ensuring their resources are safe from inappropriate access. This requires access control models, policies, and enforcement mechanisms for the shared resources. This paper specifically addresses how to reduce the information leaks caused by authorization policies used in collaborative computing environment. The basic principle is defining some labels that specify the information flow constraints, and assigning them to authorization policy components. The usages of labeled policy components must obey the information flows constraints defined by the labels in order to avoid authorization policy components being misused. This label can also improve the authorization policy administration

Keywords

authorisation; groupware; access control model; authorization policy; collaborative computing environment; information flow constraint; label-based access control policy enforcement; label-based access control policy management; labeled policy component; Access control; Authorization; Collaboration; Context modeling; Data engineering; Data security; Environmental management; Government; Manufacturing; Privacy;

fLanguage

English

Publisher

ieee

Conference_Titel

Software Engineering, Artificial Intelligence, Networking, and Parallel/Distributed Computing, 2006. SNPD 2006. Seventh ACIS International Conference on

Conference_Location

Las Vegas, NV

Print_ISBN

0-7695-2611-X

Type

conf

DOI

10.1109/SNPD-SAWN.2006.45

Filename

1640723