Sciweavers

DBSEC
2006

Creating Objects in the Flexible Authorization Framework

13 years 5 months ago
Creating Objects in the Flexible Authorization Framework
Access control is a crucial concern to build secure IT systems and, more specifically, to protect the confidentiality of information. However, access control is necessary, but not sufficient. Actually, IT systems can manipulate data to provide services to users. The results of a data processing may disclose information concerning the objects used in the data processing itself. Therefore, the control of information flow results fundamental to guarantee data protection. In the last years many information flow control models have been proposed. However, these frameworks mainly focus on the detection and prevention of improper information leaks and do not provide support for the dynamical creation of new objects. In this paper we extend our previous work to automatically support the dynamical creation of objects by verifying the conditions under which objects can be created and automatically associating an access control policy to them. Moreover, our proposal includes mechanisms tailored t...
Nicola Zannone, Sushil Jajodia, Duminda Wijesekera
Added 30 Oct 2010
Updated 30 Oct 2010
Type Conference
Year 2006
Where DBSEC
Authors Nicola Zannone, Sushil Jajodia, Duminda Wijesekera
Comments (0)