Policy mediation for multi-enterprise environments

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by P. Galiasso Articles by O. Bremer Articles by J. Hale Articles by S. Shenoi Articles by D. Ferraiola Articles by V. Hu

16th Annual Computer Security Applications Conference (ACSAC'00)

New Orleans, Louisiana

December 11-December 15

ISBN: 0-7695-0859-6

	ASCII Text	x
	P. Galiasso, O. Bremer, J. Hale, S. Shenoi, D. Ferraiola, V. Hu, "Policy mediation for multi-enterprise environments," Computer Security Applications Conference, Annual, pp. 100, 16th Annual Computer Security Applications Conference (ACSAC'00), 2000.

	BibTex	x
	@article{ 10.1109/ACSAC.2000.898863, author = {P. Galiasso and O. Bremer and J. Hale and S. Shenoi and D. Ferraiola and V. Hu}, title = {Policy mediation for multi-enterprise environments}, journal ={Computer Security Applications Conference, Annual}, volume = {0}, year = {2000}, issn = {1063-9527}, pages = {100}, doi = {http://doi.ieeecomputersociety.org/10.1109/ACSAC.2000.898863}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computer Security Applications Conference, Annual TI - Policy mediation for multi-enterprise environments SN - 1063-9527 SP EP A1 - P. Galiasso, A1 - O. Bremer, A1 - J. Hale, A1 - S. Shenoi, A1 - D. Ferraiola, A1 - V. Hu, PY - 2000 KW - information networks; authorisation; business data processing; software architecture; policy mediation; multi-enterprise environments; software infrastructures; middleware; uniform security services; heterogeneous information networks; access control policy management; large enterprise information networks; Policy Machine; Policy Mediation Architecture; static analysis; formal techniques VL - 0 JA - Computer Security Applications Conference, Annual ER -

P. Galiasso, Center for Inf. Security, Tulsa Univ., OK, USA

O. Bremer, Center for Inf. Security, Tulsa Univ., OK, USA

J. Hale, Center for Inf. Security, Tulsa Univ., OK, USA

S. Shenoi, Center for Inf. Security, Tulsa Univ., OK, USA

D. Ferraiola, Center for Inf. Security, Tulsa Univ., OK, USA

V. Hu, Center for Inf. Security, Tulsa Univ., OK, USA

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ACSAC.2000.898863

Existing software infrastructures and middleware provide uniform security services across heterogeneous information networks. However few, if any, tools exist that support access control policy management for and between large enterprise information networks. Insiders often exploit gaps in policies to mount devastating attacks. This paper presents a Policy Machine and Policy Mediation Architecture for coordinating diverse policies in large information networks. The language-based approach adopted by each of these technologies permits local and global access control policy validation with static analysis and other formal techniques. Together the Policy Machine and Policy Mediation Architecture comprise an effective system for closing policy gaps in multi-enterprise environments.

Index Terms:

information networks; authorisation; business data processing; software architecture; policy mediation; multi-enterprise environments; software infrastructures; middleware; uniform security services; heterogeneous information networks; access control policy management; large enterprise information networks; Policy Machine; Policy Mediation Architecture; static analysis; formal techniques

Citation:

P. Galiasso, O. Bremer, J. Hale, S. Shenoi, D. Ferraiola, V. Hu, "Policy mediation for multi-enterprise environments," acsac, pp.100, 16th Annual Computer Security Applications Conference (ACSAC'00), 2000

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.