An access control model for simplifying constraint expression

Authors:
Jonathon E. Tidswell;Trent Jaeger
Affiliations:
School of Computer Science & Engineering, University of New South Wales, Sydney, NSW 2052, Australia and IBM T. J. Watson Research Center;IBM T. J. Watson Research Center, 30 Saw Mill River Road, Hawthorne, NY
Venue:
Proceedings of the 7th ACM conference on Computer and communications security
Year:
2000

Citing 23
Cited 16

The schematic protection model: its definition and analysis for acyclic attenuating schemes

Journal of the ACM (JACM)
The SeaView Security Model

IEEE Transactions on Software Engineering
Role-Based Access Control Models

Computer
A unified framework for enforcing multiple access control policies

SIGMOD '97 Proceedings of the 1997 ACM SIGMOD international conference on Management of data
Mutual exclusion of roles as a means of implementing separation of duty in role-based access control systems

RBAC '97 Proceedings of the second ACM workshop on Role-based access control
Mandatory access control and role-based access control revisited

RBAC '97 Proceedings of the second ACM workshop on Role-based access control
The role graph model and conflict of interest

ACM Transactions on Information and System Security (TISSEC) - Special issue on role-based access control
The specification and enforcement of authorization constraints in workflow management systems

ACM Transactions on Information and System Security (TISSEC) - Special issue on role-based access control
The ARBAC97 model for role-based administration of roles

ACM Transactions on Information and System Security (TISSEC) - Special issue on role-based access control
The RSL99 language for role-based separation of duty constraints

RBAC '99 Proceedings of the fourth ACM workshop on Role-based access control
Modeling users in role-based access control

RBAC '00 Proceedings of the fifth ACM workshop on Role-based access control
Integrated constraints and inheritance in DTAC

RBAC '00 Proceedings of the fifth ACM workshop on Role-based access control
A lattice model of secure information flow

Communications of the ACM
Protection in operating systems

Communications of the ACM
Lattice-Based Access Control Models

Computer
A Policy Based Role Object Model

EDOC '97 Proceedings of the 1st International Conference on Enterprise Distributed Object Computing
A Dynamically Typed Access Control Model

ACISP '98 Proceedings of the Third Australasian Conference on Information Security and Privacy
Protection

ACM SIGOPS Operating Systems Review
Separation of Duty in Role-based Environments

CSFW '97 Proceedings of the 10th IEEE workshop on Computer Security Foundations
On the synthesis and analysis of protection systems

SOSP '77 Proceedings of the sixth ACM symposium on Operating systems principles
The transfer of information and authority in a protection system

SOSP '79 Proceedings of the seventh ACM symposium on Operating systems principles
The Typed Access Matrix Model

SP '92 Proceedings of the 1992 IEEE Symposium on Security and Privacy
A Logical Language for Expressing Authorizations

SP '97 Proceedings of the 1997 IEEE Symposium on Security and Privacy

A graphical definition of authorization schema in the DTAC model

SACMAT '01 Proceedings of the sixth ACM symposium on Access control models and technologies
Managing access control complexity using metrices

SACMAT '01 Proceedings of the sixth ACM symposium on Access control models and technologies
Practical safety in flexible access control models

ACM Transactions on Information and System Security (TISSEC)
Manageable access control for CORBA

Journal of Computer Security - Special issue on ESORICS 2000
Using uml to visualize role-based access control constraints

Proceedings of the ninth ACM symposium on Access control models and technologies
Verifiable composition of access control and application features

Proceedings of the tenth ACM symposium on Access control models and technologies
Application security support in the operating system kernel

ASIACCS '06 Proceedings of the 2006 ACM Symposium on Information, computer and communications security
Approvability

ASIACCS '06 Proceedings of the 2006 ACM Symposium on Information, computer and communications security
Constraint generation for separation of duty

Proceedings of the eleventh ACM symposium on Access control models and technologies
Beyond separation of duty: an algebra for specifying high-level security policies

Proceedings of the 13th ACM conference on Computer and communications security
On mutually exclusive roles and separation-of-duty

ACM Transactions on Information and System Security (TISSEC)
Towards realizing a formal RBAC model in real systems

Proceedings of the 12th ACM symposium on Access control models and technologies
Beyond separation of duty: An algebra for specifying high-level security policies

Journal of the ACM (JACM)
Constructing authorization systems using assurance management framework

IEEE Transactions on Systems, Man, and Cybernetics, Part C: Applications and Reviews
Satisfiability and Resiliency in Workflow Authorization Systems

ACM Transactions on Information and System Security (TISSEC)
Model checking security policy model using both UML static and dynamic diagrams

Proceedings of the 4th international conference on Security of information and networks

Quantified Score

Hi-index	0.00

An access control model for simplifying constraint expression

Quantified Score

Visualization

Abstract