The Policy Machine: A novel architecture and framework for access control policy specification and enforcement

Authors:
David Ferraiolo;Vijayalakshmi Atluri;Serban Gavrila
Affiliations:
National Institute of Standards and Technology, 100 Bureau Dr. Stop 8930, Gaithersburg, MD 20899, USA;National Institute of Standards and Technology, 100 Bureau Dr. Stop 8930, Gaithersburg, MD 20899, USA and MSIS Department and CIMIC, Rutgers University, USA;National Institute of Standards and Technology, 100 Bureau Dr. Stop 8930, Gaithersburg, MD 20899, USA
Venue:
Journal of Systems Architecture: the EUROMICRO Journal
Year:
2011

Citing 12
Cited 0

Role-Based Access Control Models

Computer
Configuring role-based access control to enforce mandatory and discretionary access control policies

ACM Transactions on Information and System Security (TISSEC)
Flexible support for multiple access control policies

ACM Transactions on Database Systems (TODS)
The Ponder Policy Specification Language

POLICY '01 Proceedings of the International Workshop on Policies for Distributed Systems and Networks
Specifying and enforcing constraints in role-based access control

Proceedings of the eighth ACM symposium on Access control models and technologies
Design of a Role-Based Trust-Management Framework

SP '02 Proceedings of the 2002 IEEE Symposium on Security and Privacy
Composing and combining policies under the policy machine

Proceedings of the tenth ACM symposium on Access control models and technologies
Design and Semantics of a Decentralized Authorization Language

CSF '07 Proceedings of the 20th IEEE Computer Security Foundations Symposium
A meta model for access control: why is it needed and is it even possible to achieve?

Proceedings of the 13th ACM symposium on Access control models and technologies
Supporting RBAC with XACML+OWL

Proceedings of the 14th ACM symposium on Access control models and technologies
The next 700 access control models or a unifying meta-model?

Proceedings of the 14th ACM symposium on Access control models and technologies
Trojan horse resistant discretionary access control

Proceedings of the 14th ACM symposium on Access control models and technologies

Quantified Score

Hi-index	0.00

Visualization

Abstract

The ability to control access to sensitive data in accordance with policy is perhaps the most fundamental security requirement. Despite over four decades of security research, the limited ability for existing access control mechanisms to generically enforce policy persists. While researchers, practitioners and policy makers have specified a large variety of access control policies to address real-world security issues, only a relatively small subset of these policies can be enforced through off-the-shelf technology, and even a smaller subset can be enforced by any one mechanism. In this paper, we propose an access control framework, referred to as the Policy Machine (PM) that fundamentally changes the way policy is expressed and enforced. Employing PM helps in building high assurance enforcement mechanisms in three respects. First, only a relatively small piece of the overall access control mechanism needs to be included in the host system (e.g., an operating system or application). This significantly reduces the amount of code that needs to be trusted. Second, it is possible to enforce the precise policies of resource owners, without compromise on enforcement or resorting to less effective administrative procedures. Third, the PM is capable of generically imposing confinement constraints that can be used to prevent leakage of information to unauthorized principals within the context of a variety of policies to include the commonly implemented Discretionary Access Control and Role-Based Access Control models.