A Policy Validation Framework for Enterprise Authorization Specification

Las Vegas, Nevada December 08-December 12

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/CSAC.2003.1254336

19th Annual Computer Security Applica ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Ramaswamy Chandramouli

	ASCII Text	x
	Ramaswamy Chandramouli, "A Policy Validation Framework for Enterprise Authorization Specification," Computer Security Applications Conference, Annual, pp. 319, 19th Annual Computer Security Applications Conference (ACSAC '03), 2003.

	BibTex	x
	@article{ 10.1109/CSAC.2003.1254336, author = {Ramaswamy Chandramouli}, title = {A Policy Validation Framework for Enterprise Authorization Specification}, journal ={Computer Security Applications Conference, Annual}, volume = {0}, year = {2003}, issn = {1063-9527}, pages = {319}, doi = {http://doi.ieeecomputersociety.org/10.1109/CSAC.2003.1254336}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computer Security Applications Conference, Annual TI - A Policy Validation Framework for Enterprise Authorization Specification SN - 1063-9527 SP EP A1 - Ramaswamy Chandramouli, PY - 2003 KW - null VL - 0 JA - Computer Security Applications Conference, Annual ER -

Ramaswamy Chandramouli

The validation of enterprise authorization specification for conformance to enterprise security policies requires an out-of-band framework in many situations since the enforcing access control mechanism does not provide this feature. In this paper we describe one such framework. The framework uses XML to encode the enterprise authorization specification, XML Schema to specify the underlying access control model (which in our case is the Role-based Access control Model (RBAC)) and Schematron language to encode the policy constraints. The conformance of the XML-encoded enterprise authorization specification to the structure of the RBAC model (specified through XML Schema) as well as the policy constaints (specified through Schematron) are verified through a Schematron Validator tool.

Citation:

Ramaswamy Chandramouli, "A Policy Validation Framework for Enterprise Authorization Specification," acsac, pp.319, 19th Annual Computer Security Applications Conference (ACSAC '03), 2003

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.