Title :
Label-Based Access Control Policy Enforcement and Management
Author :
Zhou, Wei ; Raja, Vinesh H. ; Meinel, Christoph ; Ahmad, Munir
Author_Institution :
Sch. of Eng., Warwick Univ.
Abstract :
To effectively participate in modern collaborations, member organizations must be able to share specific data and functionality with collaboration partners, while ensuring their resources are safe from inappropriate access. This requires access control models, policies, and enforcement mechanisms for the shared resources. This paper specifically addresses how to reduce the information leaks caused by authorization policies used in collaborative computing environment. The basic principle is defining some labels that specify the information flow constraints, and assigning them to authorization policy components. The usages of labeled policy components must obey the information flows constraints defined by the labels in order to avoid authorization policy components being misused. This label can also improve the authorization policy administration
Keywords :
authorisation; groupware; access control model; authorization policy; collaborative computing environment; information flow constraint; label-based access control policy enforcement; label-based access control policy management; labeled policy component; Access control; Authorization; Collaboration; Context modeling; Data engineering; Data security; Environmental management; Government; Manufacturing; Privacy;
Conference_Titel :
Software Engineering, Artificial Intelligence, Networking, and Parallel/Distributed Computing, 2006. SNPD 2006. Seventh ACIS International Conference on
Conference_Location :
Las Vegas, NV
Print_ISBN :
0-7695-2611-X
DOI :
10.1109/SNPD-SAWN.2006.45
