Please use this identifier to cite or link to this item:

http://hdl.handle.net/10609/1416
Title: Management of Exceptions on Access Control Policies
Author: García Alfaro, Joaquín
Cuppens, Frederic
Cuppens, Nora
Others: K-ryptography and Information Security for Open Networks. KISON
Issue Date: 16-Feb-2010
Citation: GARCÍA, J. (2007). "Management of Exceptions on Access Control Policies". A: 22nd IFIP TC-11 International Information Security Conference. IFIP TC-11. Sandton. 14 - 16 de Maig.
Abstract: The use of languages based on positive or negative expressiveness is very common for the deployment of security policies (i.e., deployment of permissions and prohibitions on firewalls through single-handed positive or negative condition attributes). Although these languages may allow us to specify any policy, the single use of positive or negative statements alone leads to complex configurations when excluding some specific cases of general rules that should always apply. In this paper we survey such a management and study existing solutions, such as ordering of rules and segmentation of condition attributes, in order to settle this lack of expressiveness.
Description: Peer-reviewed
URI: http://hdl.handle.net/10609/1416
ISBN: 978-0-387-72366-2
Appears in Collections:Conference lectures

Share:
Export:
Files in This Item:
File Description SizeFormat 
Alfaro_IFIP2007_Management.pdf172.66 kBAdobe PDFView/Open

Items in repository are protected by copyright, with all rights reserved, unless otherwise indicated.