Implementing security policies using the Safe Areas of Computation approach

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by A.L.M. dos Santos Articles by R.A. Kemmerer

16th Annual Computer Security Applications Conference (ACSAC'00)

New Orleans, Louisiana

December 11-December 15

ISBN: 0-7695-0859-6

	ASCII Text	x
	A.L.M. dos Santos, R.A. Kemmerer, "Implementing security policies using the Safe Areas of Computation approach," Computer Security Applications Conference, Annual, pp. 90, 16th Annual Computer Security Applications Conference (ACSAC'00), 2000.

	BibTex	x
	@article{ 10.1109/ACSAC.2000.898862, author = {A.L.M. dos Santos and R.A. Kemmerer}, title = {Implementing security policies using the Safe Areas of Computation approach}, journal ={Computer Security Applications Conference, Annual}, volume = {0}, year = {2000}, issn = {1063-9527}, pages = {90}, doi = {http://doi.ieeecomputersociety.org/10.1109/ACSAC.2000.898862}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computer Security Applications Conference, Annual TI - Implementing security policies using the Safe Areas of Computation approach SN - 1063-9527 SP EP A1 - A.L.M. dos Santos, A1 - R.A. Kemmerer, PY - 2000 KW - authorisation; telecommunication security; information resources; digital libraries; Internet; bank data processing; security policies; Safe Areas of Computation approach; World Wide Web; business costs; digital libraries; online banks; Internet; access control lists; SAC approach VL - 0 JA - Computer Security Applications Conference, Annual ER -

A.L.M. dos Santos, Dept. of Comput. Sci., California Univ., Santa Barbara, CA, USA

R.A. Kemmerer, Dept. of Comput. Sci., California Univ., Santa Barbara, CA, USA

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ACSAC.2000.898862

The World Wide Web is playing a major role in reducing business costs and in providing convenience to users. Digital libraries capitalize on this technology to distribute documents that are stored in their servers. Online banks capitalize on this technology to reduce their operating costs and to offer 24 hour services to their clients. These two services are examples of services that require a high degree of security. Therefore, they require a higher level of protection than the existing technologies commonly used in the World Wide Web. An approach that can be used to protect Internet transactions, called Safe Areas of Computation, was described in (dos Santos and Kemmerer, 1999). This paper describes the access control lists used by the Safe Areas of Computation approach, the operations on these access control lists supported by the approach, and how the access control lists can be customized for implementing many different security policies. This paper also describes example policies that can be used to protect digital libraries and online bank services. The paper uses the bank services as an example of how the generic security policies supported by the SAC approach can be composed.

Index Terms:

authorisation; telecommunication security; information resources; digital libraries; Internet; bank data processing; security policies; Safe Areas of Computation approach; World Wide Web; business costs; digital libraries; online banks; Internet; access control lists; SAC approach

Citation:

A.L.M. dos Santos, R.A. Kemmerer, "Implementing security policies using the Safe Areas of Computation approach," acsac, pp.90, 16th Annual Computer Security Applications Conference (ACSAC'00), 2000

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.