Skip to main content
Kent Academic Repository
Simple search | Advanced search

Automated Decomposition of Access Control Policies

Su, Linying and Chadwick, David W. and Basden, Andrew and Cunningham, James (2005) Automated Decomposition of Access Control Policies. In: Sixth IEEE International Workshop on Policies for Distributed Systems and Networks (POLICY'05). IEEE, pp. 3-13. ISBN 0-7695-2265-3. (doi:10.1109/POLICY.2005.10) (The full text of this publication is not currently available from this repository. You may be able to access a copy if URLs are provided) (KAR id:14312)

The full text of this publication is not currently available from this repository. You may be able to access a copy if URLs are provided.
Official URL:
http://dx.doi.org/10.1109/POLICY.2005.10

Abstract

Modern dynamic distributed information systems need access control policies to address controlling access to multiple resources that are distributed. The resources may be considered as a single abstract hierarchical resource. An access control policy at a high level should be able to define who is allowed to use the resources. At lower levels, the policy will address controlling access to concrete resources. By modelling the resource hierarchy, it is possible that low level policies can be automatically produced from the high level policy. These low level policies can then be distributed to the concrete resources that use an existing policy based access control decision system so that the high level policy can be enforced throughout the system. In this paper a model for representing and refining high level policies is presented. Other relevant issues and examples for demonstrating the capability of the policy decomposition

Item Type: Book section
DOI/Identification number: 10.1109/POLICY.2005.10
Uncontrolled keywords: access control; decision making; concrete; automatic control; authorization; laboratories; distributed information systems; control systems; security; internet
Subjects: Q Science > QA Mathematics (inc Computing science) > QA 76 Software, computer programming,
Divisions: Divisions > Division of Computing, Engineering and Mathematical Sciences > School of Computing
Depositing User: Mark Wheadon
Date Deposited: 24 Nov 2008 18:03 UTC
Last Modified: 05 Nov 2024 09:48 UTC
Resource URI: https://kar.kent.ac.uk/id/eprint/14312 (The current URI for this page, for reference purposes)

University of Kent Author Information

Su, Linying.

Creator's ORCID:
CReDIT Contributor Roles:

Chadwick, David W..

Creator's ORCID: https://orcid.org/0000-0003-3145-055X
CReDIT Contributor Roles:
  • Depositors only (login required):
Altmetric
Download Statistics

Total unique views for this document in KAR since July 2020. For more details click on the image.

SensusAccess
Feedback