Skip to Main Content

IEEE.org| IEEE Xplore Digital Library| IEEE Standards| IEEE Spectrum| More Sites

Cart (Loading....) | Create Account | Sign In

Author Search^beta | Advanced Search | Preferences | | More Search Options

Browse Journals & Magazines > Security & Privacy, IEEE ...> Volume:8 Issue:4

What's Wrong with Access Control in the Real World?

Full Text Sign-In or Purchase

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

Username

Password

Purchase PDF
Other Formats

Formats	Non-Member	Member
PDF	$31	$13

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

Already Purchased? View Article
Subscription Options Learn More

2 Author(s)

Sinclair, S. ; Dartmouth Coll., Dartmouth, NH, USA ; Smith, S.W.

This article enumerates some simplifying assumptions the security community has made in its effort to gain traction with the access control problem. For many environments, a dramatic and painful mismatch seems to exist between these simplifying assumptions and reality. The authors argue that effective security in these environments might therefore require rethinking these assumptions.

Published in:
Security & Privacy, IEEE (Volume:8 , Issue: 4 )

Date of Publication: July-Aug. 2010

Page(s):: 74 - 77
ISSN :: 1540-7993
INSPEC Accession Number:: 11447348
Digital Object Identifier :: 10.1109/MSP.2010.139
Product Type:: Journals & Magazines

Date of Current Version :: 26 July 2010
Issue Date :: July-Aug. 2010
Sponsored by :: IEEE Computer Society

Author(s)

Sinclair, S.
Dartmouth Coll., Dartmouth, NH, USA
Smith, S.W.

INSPEC: CONTROLLED INDEXING

authorisation

INSPEC: NON CONTROLLED INDEXING

access control

AUTHOR KEYWORDS

access control

least privilege

policy

usable security.

IEEE TERMS

Access control

Business continuity

Decision making

Risk management

Security

Referenced Items are not available for this document.

No versions found for this document.

Standards Dictionary Terms are available to subscribers only.

| Create Account

IEEE Account

Purchase Details

Profile Information

Need Help?

US & Canada: +1 800 678 4333
Worldwide: +1 732 981 0060
Contact & Support

IEEE Advancing Technology for Humanity

About IEEE Xplore | Contact | Help | Terms of Use | Nondiscrimination Policy | Site Map | Privacy & Opting Out of Cookies

A not-for-profit organization, IEEE is the world's largest professional association for the advancement of technology.
© Copyright 2013 IEEE - All rights reserved. Use of this web site signifies your agreement to the terms and conditions.