Conference ProceedingsOPEN ACCESS

Access control: Policies, models, and mechanisms

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (2001) 2171 LNCS 137-196
DOI: 10.1007/3-540-45608-2_3
470Citations
Citations of this article
421Readers
Mendeley users who have this article in their library.

This article is free to access.

Abstract

Access control is the process of mediating every request to resources and data maintained by a system and determining whether the request should be granted or denied. The access control decision is enforced by a mechanism implementing regulations established by a security policy. Different access control policies can be applied, corresponding to different criteria for defining what should, and what should not, be allowed, and, in some sense, to different definitions of what ensuring security means. In this chapter we investigate the basic concepts behind access control design and enforcement, and point out different security requirements that may need to be taken into consideration. We discuss several access control policies, and models formalizing them, that have been proposed in the literature or that are currently under investigation.

Cite

CITATION STYLE

APA

Samarati, P., & di Vimercati, S. de C. (2001). Access control: Policies, models, and mechanisms. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 2171 LNCS, pp. 137–196). Springer Verlag. https://doi.org/10.1007/3-540-45608-2_3

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free