مرکز منطقه ای اطلاع رساني علوم و فناوري - The PEI framework for application-centric security

DocumentCode :

538407

Title :

The PEI framework for application-centric security

Author :

Sandhu, Ravi

Author_Institution :

Inst. for Cyber Security, Univ. of Texas at San Antonio, San Antonio, TX, USA

fYear :

2009

fDate :

20-22 May 2009

Firstpage :

Lastpage :

Abstract :

This paper motivates the fundamental importance of application context for security. It then gives an overview of the PEI framework for application-centric security and outlines some of the lessons learned in applying this framework. PEI stands for Policy, Enforcement and Implementation, signifying three distinct layers at which security policy and design decisions need to be made. The framework was introduced by this author in 2006. It is closely related to the earlier OM-AM framework also introduced by this author in 2000.

Keywords :

security of data; PEI; application centric security; security policy; Access control; Books; Computational modeling; Computer security; Computers; Context;

fLanguage :

English

Publisher :

ieee

Conference_Titel :

Security and Communication Networks (IWSCN), 2009 Proceedings of the 1st International Workshop on

Conference_Location :

Trondheim

Print_ISBN :

978-1-61284-168-7

Electronic_ISBN :

978-82-997105-1-0

Type :

conf

Filename :

5683065

Link To Document :

https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=538407