Validating Access Control Policies for Virtual Organisations

نویسندگان

  • J. Bryans
  • J. Fitzgerald
  • Jeremy Bryans
  • John Fitzgerald
چکیده

Managing the evolution of a dynamic virtual organisation (VO) is a considerable challenge, particularly in ensuring that participating agents provide sufficient access to resources in order to achieve the overall goals without compromising their own information management principles. We propose a tool-supported approach, based on executable formal models, that supports rapid visualised feedback on design alternatives for access control policies that arise when a VO evolves. The approach has been prototyped using an established formal method and toolkit.

برای دانلود رایگان متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

منابع مشابه

An automatic test case generator for evaluating implementation of access control policies

One of the main requirements for providing software security is the enforcement of access control policies which aim to protect resources of the system against unauthorized accesses. Any error in the implementation of such policies may lead to undesirable outcomes. For testing the implementation of access control policies, it is preferred to use automated methods which are faster and more relia...

متن کامل

A combination of semantic and attribute-based access control model for virtual organizations

A Virtual Organization (VO) consists of some real organizations with common interests, which aims to provide inter organizational associations to reach some common goals by sharing their resources with each other. Providing security mechanisms, and especially a suitable access control mechanism, which enforces the defined security policy is a necessary requirement in VOs. Since VO is a complex ...

متن کامل

Access Control for Dynamic Virtual Organisations

Business process integration can be complex when it spans organisations. Existing grid technology aims to provide the capability to link processing between organisations, but does not presently provide manageable secure access to grid resources. Furthermore, current workflow tools connecting grid services lack security for collaborative workflows. The DAME (Distributed Aircraft Maintenance Envi...

متن کامل

Formal Engineering of XACML Access Control Policies in VDM++

We present a formal, tool-supported approach to the design and maintenance of access control policies expressed in the eXtensible Access Control Markup Language (XACML). Our aim is to help developers evaluate the consequences of policy decisions in complex situations where security requirements change and access decisions may depend on the external dynamic environment. The approach applies the ...

متن کامل

Recognition of Authority in Virtual Organisations

A Virtual Organisation (VO) is a temporary alliance of autonomous, diverse, and geographically dispersed organisations, where the participants pool resources, information and knowledge in order to meet common objectives. This requires dynamic security policy management. We propose an authorisation policy management model called recognition of authority (ROA) which allows dynamically trusted aut...

متن کامل

ذخیره در منابع من

ذخیره در منابع من قبلا به منابع من ذحیره شده

{@ msg_add @}


  با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید

عنوان ژورنال:

دوره   شماره 

صفحات  -

تاریخ انتشار 2007