Security is fuzzy!: applying the fuzzy logic paradigm to the multipolicy paradigm
NSPW '92-93 Proceedings on the 1992-1993 workshop on New security paradigms
The NIST model for role-based access control: towards a unified standard
RBAC '00 Proceedings of the fifth ACM workshop on Role-based access control
An algebra for composing access control policies
ACM Transactions on Information and System Security (TISSEC)
Policy Contexts: Controlling Information Flow in Parameterised RBAC
POLICY '03 Proceedings of the 4th IEEE International Workshop on Policies for Distributed Systems and Networks
Flexible access control policy specification with constraint logic programming
ACM Transactions on Information and System Security (TISSEC)
Access-Control Language for Multidomain Environments
IEEE Internet Computing
Hi-index | 0.00 |
Coalitions of autonomous domains gain constantly interest during the last years due to the various fields of their potential application. A lot of challenges of both academic as well as of practical nature are related with their deployment. Among else, the distributed nature of a coalition demands special focus in respect to security management. In this paper we argue about the necessity for adjustable security mechanisms towards the security management of multi-domain environments; we describe an approach that allows determination of preferences when defining access control permissions over the shared objects. We handle such preferences by encoding access control constraints using fuzzy relations and we describe a prototype security architecture that implements the basic principles of our approach.