DocumentCode :
2449354
Title :
Semantic Comparison of Security Policies: From Access Control Policies to Flow Properties
Author :
Jaume, M.
Author_Institution :
LIP6, Univ. Pierre & Marie Curie, Paris, France
fYear :
2012
fDate :
24-25 May 2012
Firstpage :
60
Lastpage :
67
Abstract :
This paper introduces two generic mechanisms allowing to compare security policies from a semantical point of view. First, a notion of embedding is defined in order to compare policies over a common domain. Then, interpretations of security policies are introduced in order to consider their properties over arbitrary domains. Thus, combining interpretations and embeddings allows to compare policies expressed over different domains. Along the lines of this paper, we illustrate our definitions by defining a flow-based interpretation of access control and by comparing classical access control policies according to a hierarchy of abstract flow policies, thus characterizing flow properties which can be ensured by access control policies.
Keywords :
authorisation; embedded systems; abstract flow policies; arbitrary domains; classical access control policies; embedding notion; flow properties; flow-based interpretation; generic mechanisms; security policies; semantic comparison; Abstracts; Algebra; Authorization; Mechanical factors; Semantics;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Security and Privacy Workshops (SPW), 2012 IEEE Symposium on
Conference_Location :
San Francisco, CA
Print_ISBN :
978-1-4673-2157-0
Type :
conf
DOI :
10.1109/SPW.2012.33
Filename :
6227685
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=2449354
بازگشت