A framework for expressing models of security policy
Dobson, J.E.
McDermid, J.A.
Comput. Lab., Newcastle Upon Tyne Univ.;
This paper appears in: Security and Privacy, 1989. Proceedings., 1989 IEEE Symposium on
Publication Date: 1-3 May 1989
On page(s): 229-239
Meeting Date: 05/01/1989 - 05/03/1989
Location: Oakland, CA, USA
ISBN: 0-8186-1939-2
References Cited: 9
INSPEC Accession Number: 3472406
Digital Object Identifier: 10.1109/SECPRI.1989.36297
Current Version Published: 2002-08-06
Abstract
The authors first describe some issues that arise from the
interplay between the security requirements for an integrated project
support environment (IPSE) for the development of a trusted system, and
the security requirements of the trusted system itself. All of these
issues derive from security policy and the modeling of security policy.
A framework is then presented which allows security policies to be
expressed in the context of the enterprise whose needs the trusted
system is intended to serve. Finally some possible applications of the
framework are used to indicate how security policies affect design
decision-making, security policy conflict detection, and security risk
evaluation
Index
Terms
Available to subscribers and IEEE members.
References
Available to subscribers and IEEE members.
Citing Documents
Available to subscribers and IEEE members.
Cart
