Access control languages which support administrative controls, and thus allow the ordinary permissions of a system to change, have traditionally been constructed with first order predicate logic or graph rewriting rules. We introduce a new access control model to implement administrative controls directly in terms of the security properties - we call this Security Property Based Administrative Controls (SPBAC). Administrative approval is required only when a security property is changed (violated) relative to the current configuration. We show that in the case of information flow, and its effects on both integrity and confidentiality, SPBACs are implementable, and the necessary administrative approvals exactly determinable. © Springer-Verlag Berlin Heidelberg 2004.
CITATION STYLE
Solworth, J. A., & Sloan, R. H. (2004). Security property based administrative controls. Lecture Notes in Computer Science (Including Subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), 3193, 244–259. https://doi.org/10.1007/978-3-540-30108-0_15
Mendeley helps you to discover research relevant for your work.