Beyond separation of duty: An algebra for specifying high-level security policies

Authors:
Ninghui Li;Qihua Wang
Affiliations:
Purdue University, West Lafayette, Indiana;Purdue University, West Lafayette, Indiana
Venue:
Journal of the ACM (JACM)
Year:
2008

Citing 23
Cited 6

Combinatorial optimization: algorithms and complexity

Combinatorial optimization: algorithms and complexity
A calculus for access control in distributed systems

ACM Transactions on Programming Languages and Systems (TOPLAS)
Role-Based Access Control Models

Computer
The specification and enforcement of authorization constraints in workflow management systems

ACM Transactions on Information and System Security (TISSEC) - Special issue on role-based access control
On the increasing importance of constraints

RBAC '99 Proceedings of the fourth ACM workshop on Role-based access control
The RSL99 language for role-based separation of duty constraints

RBAC '99 Proceedings of the fourth ACM workshop on Role-based access control
An access control model for simplifying constraint expression

Proceedings of the 7th ACM conference on Computer and communications security
A modular approach to composing access control policies

Proceedings of the 7th ACM conference on Computer and communications security
Role-based authorization constraints specification

ACM Transactions on Information and System Security (TISSEC)
Practical safety in flexible access control models

ACM Transactions on Information and System Security (TISSEC)
An algebra for composing access control policies

ACM Transactions on Information and System Security (TISSEC)
An Authorization Model for Workflows

ESORICS '96 Proceedings of the 4th European Symposium on Research in Computer Security: Computer Security
A propositional policy algebra for access control

ACM Transactions on Information and System Security (TISSEC)
Specifying and enforcing constraints in role-based access control

Proceedings of the eighth ACM symposium on Access control models and technologies
Separation of Duty in Role-based Environments

CSFW '97 Proceedings of the 10th IEEE workshop on Computer Security Foundations
Design of a Role-Based Trust-Management Framework

SP '02 Proceedings of the 2002 IEEE Symposium on Security and Privacy
The Consistency of Task-Based Authorization Constraints in Workflow Systems

CSFW '04 Proceedings of the 17th IEEE workshop on Computer Security Foundations
A reference monitor for workflow systems with constrained task execution

Proceedings of the tenth ACM symposium on Access control models and technologies
Supporting conditional delegation in secure workflow management systems

Proceedings of the tenth ACM symposium on Access control models and technologies
Managing Digital Rights using Linear Logic

LICS '06 Proceedings of the 21st Annual IEEE Symposium on Logic in Computer Science
On mutually exclusive roles and separation-of-duty

ACM Transactions on Information and System Security (TISSEC)
Towards an algebra for security policies

ICATPN'05 Proceedings of the 26th international conference on Applications and Theory of Petri Nets
Satisfiability and resiliency in workflow systems

ESORICS'07 Proceedings of the 12th European conference on Research in Computer Security

Dynamic enforcement of abstract separation of duty constraints

ESORICS'09 Proceedings of the 14th European conference on Research in computer security
Generic algorithms for consistency checking of mutual-exclusion and binding constraints in a business process context

OTM'10 Proceedings of the 2010 international conference on On the move to meaningful internet systems - Volume Part I
Modeling process-related RBAC models with extended UML activity models

Information and Software Technology
Separation of duties as a service

Proceedings of the 6th ACM Symposium on Information, Computer and Communications Security
A relational database integrity framework for access control policies

Journal of Intelligent Information Systems
Dynamic enforcement of abstract separation of duty constraints

ACM Transactions on Information and System Security (TISSEC)

Quantified Score

Hi-index	0.00

Visualization

Abstract

The process of introducing security controls into a sensitive task, which we call secure task design in this article, consists of two steps: high-level security policy design and low-level enforcement scheme design. A high-level security policy states an overall requirement for a sensitive task. One example of a high-level security policy is a separation of duty policy, which requires a task to be performed by a team of at least k users. Unlike low-level enforcement schemes such as security constraints in workflows, a separation of duty policy states a high-level requirement about the task without referring to individual steps in the task. While extremely important and widely used, separation of duty policies state only requirements on the number of users involved in the task and do not capture the requirements on these users' attributes. In this article, we introduce a novel algebra that enables the formal specification of high-level policies that combine requirements on users' attributes with requirements on the number of users motivated by separation of duty considerations. We give the syntax and semantics of the algebra and study algebraic properties of its operators. After that, we study potential mechanisms to enforce high-level policies specified in the algebra and a number of computational problems related to policy analysis and enforcement.