Location via proxy:   [ UP ]  
[Report a bug]   [Manage cookies]                
Skip to main content
SpringerLink
Log in

Enforcing Obligation with Security Monitors

  • Conference paper
  • First Online:
Information and Communications Security (ICICS 2001)

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 2229))

Included in the following conference series:

Abstract

With the ubiquitous deployment of large scale networks, more and more complex human interactions are supported by computer applications. This poses new challenges on the expressiveness of security policy design systems, often requiring the use of new security paradigms. In this paper we identify a restricted type of obligation which is useful to express new security policies. This type of obligation includes the following general situations: i) when two or more actions oblige each other, i.e. if one action is executed the others must also be executed and reciprocally, and ii) when an action obliges another and the obligatory action is causally dependent on the first action.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Subscribe and save

Springer+ Basic
$34.99 /Month
  • Get 10 units per month
  • Download Article/Chapter or eBook
  • 1 Unit = 1 Article or 1 Chapter
  • Cancel anytime
Subscribe now

Buy Now

Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Similar content being viewed by others

References

  1. Jonscher, D.: Extending access control with duties-realized by active mechanisms. Database Security, VI: Status and Prospects. (1992) 91–112

    Google Scholar 

  2. Cuppens, F., Saurel, C.: Specifying a security policy: A case study. In: IEEE CS Computer Security Foundations Workshop (CSFW96). (1996) 123–135

    Google Scholar 

  3. Marriott, D., Sloman, M.: Implementation of a management agent for interpreting obligation policy. In: IEEE/IFIP 7th Int. W. on Distributed Systems Operations and Management, Italy (1996)

    Google Scholar 

  4. Schneider, F. B.: Enforceable security policies. The ACM Transactions on Information and System Security 3 (2000)

    Google Scholar 

  5. Gray, J., Reuter, A.: Transaction Processing: concepts and techniques. Data Management Systems. Morgan Kaufmann Publishers, Inc., San Mateo (CA), USA (1993)

    Google Scholar 

  6. Ribeiro, C., Zúquete, A., Ferreira, P., Guedes, P.: Spl: An access control language for security policies with complex constraints. In: Network and Distributed System Security Symposium (NDSS’01), San Diego, California (2001)

    Google Scholar 

  7. Denning, D.: A lattice model of secure information flow. Comm. of ACM 20 (1977)

    Google Scholar 

  8. Edwards, W. K.: Policies and roles in collaborative applications. In: ACM 1996 Conference on Computer Supported Work, New York, ACM Press (1996) 11–20

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. IST/INESC R, Alves Redol N°9, 1000, Lisboa, Portugal

    Carlos Ribeiro, André Zúquete & Paulo Ferreira

Authors
  1. Carlos Ribeiro
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. André Zúquete
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Paulo Ferreira
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Engineering Research Center for Information Security Technology (ERCIST), Chinese Academy of Sciences, P.O. Box 8718, 100080, Beijing, China

    Sihan Qing

  2. NTT Labs, 1-1 Hikarinooka, 239-0847, Yokosuka-shi, Japan

    Tatsuaki Okamoto

  3. Oracle Corporation, 500 Oracle Parkway, 94065, Redwood Shores, CA, USA

    Jianying Zhou

Rights and permissions

Reprints and permissions

Copyright information

© 2001 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Ribeiro, C., Zúquete, A., Ferreira, P. (2001). Enforcing Obligation with Security Monitors. In: Qing, S., Okamoto, T., Zhou, J. (eds) Information and Communications Security. ICICS 2001. Lecture Notes in Computer Science, vol 2229. Springer, Berlin, Heidelberg. https://doi.org/10.1007/3-540-45600-7_20

Download citation

  • DOI: https://doi.org/10.1007/3-540-45600-7_20

  • Published:

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-42880-0

  • Online ISBN: 978-3-540-45600-1

  • eBook Packages: Springer Book Archive

Publish with us

Policies and ethics

Search

Navigation