The Specification and Enforcement of Advanced Security Policies Export

@inproceedings{citeulike:4921169, abstract = {In a distributed multi-user environment, the security policymust not only specify legitimate user privileges but alsoaid in the detection of the abuse of the privileges and adaptto perceived system threat conditions.This paper advocates extending authorization policyevaluation mechanisms with a means for generating auditdata allowing immediate notification of suspicious applicationlevel activity. It additionally suggests that the evaluationof the policies themselves adapt to perceived networkthreat conditions, possibly affected by the receipt of such auditdata by other processes.Such advanced policies assist in detecting and respondingto intrusion and misuse and they allow more efficient utilizationof security services, such as authentication, audit,and notification.We present an authorization framework, which enablesthe representation and enforcement of advanced securitypolicies. Our approach is based on expanding the policyevaluation mechanism with the ability to generate real timeactions, such as checking the current system threat level andsending a notification.}, address = {Washington, DC, USA}, author = {Ryutov, T. and Neuman, C.}, booktitle = {POLICY '02: Proceedings of the 3rd International Workshop on Policies for Distributed Systems and Networks (POLICY'02)}, citeulike-article-id = {4921169}, citeulike-linkout-0 = {http://portal.acm.org/citation.cfm?id=883502}, isbn = {0-7695-1611-4}, keywords = {2002, enforcement, policy, security}, pages = {128+}, posted-at = {2009-06-22 09:50:26}, priority = {2}, publisher = {IEEE Computer Society}, title = {The Specification and Enforcement of Advanced Security Policies}, url = {http://portal.acm.org/citation.cfm?id=883502}, year = {2002} }

TY - CONF ID - citeulike:4921169 L3 - citeulike-article-id:4921169 N2 - In a distributed multi-user environment, the security policymust not only specify legitimate user privileges but alsoaid in the detection of the abuse of the privileges and adaptto perceived system threat conditions.This paper advocates extending authorization policyevaluation mechanisms with a means for generating auditdata allowing immediate notification of suspicious applicationlevel activity. It additionally suggests that the evaluationof the policies themselves adapt to perceived networkthreat conditions, possibly affected by the receipt of such auditdata by other processes.Such advanced policies assist in detecting and respondingto intrusion and misuse and they allow more efficient utilizationof security services, such as authentication, audit,and notification.We present an authorization framework, which enablesthe representation and enforcement of advanced securitypolicies. Our approach is based on expanding the policyevaluation mechanism with the ability to generate real timeactions, such as checking the current system threat level andsending a notification. SN - 0-7695-1611-4 AD - Washington, DC, USA TI - The Specification and Enforcement of Advanced Security Policies PB - IEEE Computer Society T2 - POLICY '02: Proceedings of the 3rd International Workshop on Policies for Distributed Systems and Networks (POLICY'02) SP - 128 KW - 2002 KW - enforcement KW - policy KW - security AU - Ryutov, T AU - Neuman, C PY - 2002/// UR - http://portal.acm.org/citation.cfm?id=883502 ER -