English
Related papers

Related papers: Model Checking Access Control Policies: A Case Stu…

200 papers

Access control policies are used to restrict access to sensitive records for authorized users only. One approach for specifying policies is using role based access control (RBAC) where authorization is given to roles instead of users. Users…

Cryptography and Security · Computer Science 2015-03-27 Khair Eddin Sabri

Access control (AC) is the core of every architectural solution for information security. Indeed, no effective protection scheme can abstract from the careful design of access control policies, and infrastructures underlying modern…

Cryptography and Security · Computer Science 2017-10-11 Manuel Cheminod , Luca Durante , Lucia Seno , Fulvio Valenza , Adriano Valenzano

In an organization specifically as virtual as cloud there is need for access control systems to constrain users direct or backhanded action that could lead to breach of security. In cloud, apart from owner access to confidential data the…

Cryptography and Security · Computer Science 2014-11-10 Muralikrishnan Ramane , Balaji Vasudevan , Sathappan Allaphan

Role-Based Access Control (RBAC) is a popular authorization model used to manage data-access constraints in a wide range of systems. RBAC usually defines the static view on the access rights. However, to ensure dependability of a system, it…

Software Engineering · Computer Science 2018-05-16 Inna Vistbakka , Elena Troubitsyna

Modern software systems rely on mining insights from business sensitive data stored in public clouds. A data breach usually incurs significant (monetary) loss for a commercial organization. Conceptually, cloud security heavily relies on…

Cryptography and Security · Computer Science 2022-06-14 Mikhail Kazdagli , Mohit Tiwari , Akshat Kumar

Cloud Computing is a set of IT Services that are provided to a customer over a network and these services are delivered by third party provider who owns the infrastructure and reduce the burden at user's end. Nowadays researchers devoted…

Distributed, Parallel, and Cluster Computing · Computer Science 2013-08-26 Gitanjali , Sukhjit Singh Sehra , Jaiteg Singh

Attribute-based access control (ABAC) promises a powerful way of formalizing access policies in support of a wide range of access management scenarios. Efficient implementation of ABAC in its general form is still a challenge, especially…

Cryptography and Security · Computer Science 2019-09-24 Hadi Ahmadi , Derek Small

Cloud computing is considered as the one of the most dominant paradigm in field of information technology which offers on demand cost effective services such as Software as a service (SAAS), Infrastructure as a service (IAAS) and Platform…

Cryptography and Security · Computer Science 2020-11-17 N. N. Thilakarathne , Dilani Wickramaaarachchi

Usage control models provide an integration of access control, digital rights, and trust management. To achieve this integration, usage control models support additional concepts such as attribute mutability and continuity of decision.…

Logic in Computer Science · Computer Science 2018-06-27 Antonios Gouglidis , Christos Grompanopoulos , Anastasia Mavridou

Traditional authorization policies are user-centric, in the sense that authorization is defined, ultimately, in terms of user identities. We believe that this user-centric approach is inappropriate for many applications, and that what…

Cryptography and Security · Computer Science 2014-06-20 Jason Crampton , James Sellwood

Recent work on relationship-based access control has begun to show how it can be applied to general computing systems, as opposed to simply being employed for social networking applications. The use of relationships to determine…

Cryptography and Security · Computer Science 2015-09-22 Jason Crampton , James Sellwood

For the formal verification of a network security policy, it is crucial to express the verification goals. These formal goals, called security invariants, should be easy to express for the end user. Focusing on access control and…

Cryptography and Security · Computer Science 2016-04-04 Cornelius Diekmann , Stephan-A. Posselt , Heiko Niedermayer , Holger Kinkelin , Oliver Hanka , Georg Carle

Privacy policies define the terms under which personal data may be collected and processed by data controllers. The General Data Protection Regulation (GDPR) imposes requirements on these policies that are often difficult to implement.…

Cryptography and Security · Computer Science 2024-09-19 Raúl Pardo , Daniel Le Métayer

Enforcing security requirements in networked information systems relies on security controls to mitigate the risks from increasingly dangerous threats. Configuring security controls is challenging; even nowadays, administrators must perform…

Cryptography and Security · Computer Science 2025-01-14 Cataldo Basile , Gabriele Gatti , Francesco Settanni

Cheating is a real problem in the Internet of Things. The fundamental question that needs to be answered is how we can trust the validity of the data being generated in the first place. The problem, however, isn't inherent in whether or not…

Cryptography and Security · Computer Science 2016-10-05 Yunpeng Zhang , Xuqing Wu

The advance of web services technologies promises to have far-reaching effects on the Internet and enterprise networks allowing for greater accessibility of data. The security challenges presented by the web services approach are…

Logic in Computer Science · Computer Science 2012-06-15 Michele Barletta , Silvio Ranise , Luca Viganò

Role-Based Access Control (RBAC) struggles to adapt to dynamic enterprise environments with documents that contain information that cannot be disclosed to specific user groups. As these documents are used by LLM-driven systems (e.g., in…

Cryptography and Security · Computer Science 2025-12-24 Michele Lorenzo , Idilio Drago , Dario Salvadori , Fabio Romolo Vayr

Security risks from AI have motivated calls for international agreements that guardrail the technology. However, even if states could agree on what rules to set on AI, the problem of verifying compliance might make these agreements…

Computers and Society · Computer Science 2023-04-11 Mauricio Baker

Identity and access management (I&AM) is the umbrella term for managing users and their permissions. It is required for users to access different services. These services can either be provided from their home organization, like a company…

Cryptography and Security · Computer Science 2023-01-03 Daniela Pöhn , Wolfgang Hommel

Multi-Agent Systems (MAS) are notoriously complex and hard to verify. In fact, it is not trivial to model a MAS, and even when a model is built, it is not always possible to verify, in a formal way, that it is actually behaving as we…

Logic in Computer Science · Computer Science 2023-06-19 Angelo Ferrando , Vadim Malvone
‹ Prev 1 2 3 10 Next ›