A policy-based access control mechanism for the corporate Web

New Orleans, Louisiana December 11-December 15

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/ACSAC.2000.898868

16th Annual Computer Security Applica ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by V. Ungureanu Articles by F. Vesuma Articles by N.H. Minsky

	ASCII Text	x
	V. Ungureanu, F. Vesuma, N.H. Minsky, "A policy-based access control mechanism for the corporate Web," Computer Security Applications Conference, Annual, pp. 150, 16th Annual Computer Security Applications Conference (ACSAC'00), 2000.

	BibTex	x
	@article{ 10.1109/ACSAC.2000.898868, author = {V. Ungureanu and F. Vesuma and N.H. Minsky}, title = {A policy-based access control mechanism for the corporate Web}, journal ={Computer Security Applications Conference, Annual}, volume = {0}, year = {2000}, issn = {1063-9527}, pages = {150}, doi = {http://doi.ieeecomputersociety.org/10.1109/ACSAC.2000.898868}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computer Security Applications Conference, Annual TI - A policy-based access control mechanism for the corporate Web SN - 1063-9527 SP EP A1 - V. Ungureanu, A1 - F. Vesuma, A1 - N.H. Minsky, PY - 2000 KW - authorisation; intranets; business data processing; policy-based access control mechanism; corporate Web; access control lists; security problems; management problems; intranets; corporate intranet; formal statement; policy engines VL - 0 JA - Computer Security Applications Conference, Annual ER -

V. Ungureanu, MSIS Dept., Rutgers Univ., Newark, NJ, USA

F. Vesuma, MSIS Dept., Rutgers Univ., Newark, NJ, USA

N.H. Minsky, MSIS Dept., Rutgers Univ., Newark, NJ, USA

Current Web technologies use access control lists (ACLs) for enforcing regulations and practices governing businesses today. Having the policy hard-coded into ACLs causes management and security problems which have sofar prevented intranets from achieving their full potential. This paper is about a concrete design of a mechanism that supports policies for regulating access to information via corporate intranet. This mechanism makes a strict separation between the formal statement of a policy, and its enforcement, the latter being carried out by generic policy engines. The proposed mechanism is easy to deploy, requiring no modifications of current Web servers. We provide some preliminary performance results that show that the mechanism is quite affordable, even in its present, experimental stage.

Index Terms:

authorisation; intranets; business data processing; policy-based access control mechanism; corporate Web; access control lists; security problems; management problems; intranets; corporate intranet; formal statement; policy engines

Citation:

V. Ungureanu, F. Vesuma, N.H. Minsky, "A policy-based access control mechanism for the corporate Web," acsac, pp.150, 16th Annual Computer Security Applications Conference (ACSAC'00), 2000

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.