NSPW '96 Proceedings of the 1996 workshop on New security paradigms
Availability policies in an adversarial environment
NSPW '96 Proceedings of the 1996 workshop on New security paradigms
NSPW '07 Proceedings of the 2007 Workshop on New Security Paradigms
Hi-index | 0.00 |
This paper suggests the possibility of controlling the rate of release of information as well as whether the information can be released at all. If the user must have access to information, but does not require fast access to large amounts of data, the system can release the information to that user in a slow and unhelpful manner. The addition of the parameter of time acts as a deterrent to information collectors and intruders; less information is available, and the user must access the system repeatedly and for a longer time to get it.Investigation of rate of release has led to further understanding of the principle of least privilege. The principle of least privilege has generally been espoused by the computer security as highly desirable. It has been applied to computer security, but only in limited ways. Considered of time allows a refinement of the concept and offers the possibility of more flexible and fine-grained control.