Controlling access to documents: a formal access control model

Authors:
Paul E. Sevinç;David Basin;Ernst-Rüdiger Olderog
Affiliations:
Department of Computer Science, ETH Zurich, Zurich, Switzerland;Department of Computer Science, ETH Zurich, Zurich, Switzerland;Dept. of Computing Science, University of Oldenburg, Oldenburg, Germany
Venue:
ETRICS'06 Proceedings of the 2006 international conference on Emerging Trends in Information and Communication Security
Year:
2006

Citing 16
Cited 2

Communicating sequential processes

Communicating sequential processes
Database security

Database security
CSP-OZ: a combination of object-Z and CSP

FMOODS '97 Proceedings of the IFIP TC6 WG6.1 international workshop on Formal methods for open object-based distributed systems
XML document security based on provisional authorization

Proceedings of the 7th ACM conference on Computer and communications security
A fine-grained access control system for XML documents

ACM Transactions on Information and System Security (TISSEC)
Securing XML Documents with Author-X

IEEE Internet Computing
An Access Control Model for Tree Data Structures

ISC '02 Proceedings of the 5th International Conference on Information Security
Provisions and Obligations in Policy Rule Management

Journal of Network and Systems Management
The UCONABC usage control model

ACM Transactions on Information and System Security (TISSEC)
Reasoning with advanced policy rules and its application to access control

International Journal on Digital Libraries
Microsoft Windows Security Resource Kit, Second Edition

Microsoft Windows Security Resource Kit, Second Edition
Database Security-Concepts, Approaches, and Challenges

IEEE Transactions on Dependable and Secure Computing
An authorization model for XML databases

SWS '04 Proceedings of the 2004 workshop on Secure web service
Access control for XML documents and data

Information Security Tech. Report
Platform for enterprise privacy practices: privacy-enabled management of customer data

PET'02 Proceedings of the 2nd international conference on Privacy enhancing technologies
On obligations

ESORICS'05 Proceedings of the 10th European conference on Research in Computer Security

Specifying and analyzing security automata using CSP-OZ

ASIACCS '07 Proceedings of the 2nd ACM symposium on Information, computer and communications security
Securing the distribution and storage of secrets with trusted platform modules

WISTP'07 Proceedings of the 1st IFIP TC6 /WG8.8 /WG11.2 international conference on Information security theory and practices: smart cards, mobile and ubiquitous computing systems

Quantified Score

Hi-index	0.00

Visualization

Abstract

Current access-control systems for documents suffer from one or more of the following limitations: they are coarse-grained, limited to XML documents, or unable to maintain control over copies of documents once they are released by the system. We present a formal model of a system that overcomes all of these restrictions. It is very fine-grained, supports a general class of documents, and provides a foundation for usage control.