Name
Abstract | ||
|---|---|---|
We investigate the cost of changing access control policies dynamically as a response action in computer network defense. We compare and contrast the use of access lists and capability lists in this regard, and develop a quantitative feel for the performance overheads and storage requirements. We also explore the issues related to preserving safety properties and trust assumptions during this process. We suggest augmentations to policy specifications that can guarantee these properties in spite of dynamic changes to system state. Using the lessons learned from this exercise, we apply these techniques in the design of dynamic access controls for dynamic environments. |
Year | DOI | Venue |
|---|---|---|
2003 | 10.1145/775412.775442 | SACMAT |
Keywords | Field | DocType |
quantitative feel,access control policies dynamically,capability list,network defense operation,computer network defense,performance overhead,dynamic environment,dynamic change,access list,policy specification,dynamic access control,computer network,trust,access control | Computer access control,Data mining,Computer security,Computer science,Role-based access control,Computer network operations,Access control,Network defense,Spite,Overhead (business) | Conference |
ISBN | Citations | PageRank |
1-58113-681-1 | 16 | 0.83 |
References | Authors | |
10 | 2 | |
Name | Order | Citations | PageRank |
|---|---|---|---|
| Prasad Naldurg | 1 | 488 | 43.39 |
| Roy Campbell | 2 | 5133 | 573.61 |