Entry Marinovic:2014:RIB from tissec.bib

Last update: Sun Oct 15 02:58:48 MDT 2017                Valid HTML 3.2!

Index sections

Top | Symbols | Numbers | Math | A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z

BibTeX entry

@Article{Marinovic:2014:RIB,
  author =       "Srdjan Marinovic and Naranker Dulay and Morris
                 Sloman",
  title =        "{Rumpole}: an Introspective Break-Glass Access Control
                 Language",
  journal =      j-TISSEC,
  volume =       "17",
  number =       "1",
  pages =        "2:1--2:??",
  month =        aug,
  year =         "2014",
  CODEN =        "ATISBQ",
  DOI =          "https://doi.org/10.1145/2629502",
  ISSN =         "1094-9224 (print), 1557-7406 (electronic)",
  ISSN-L =       "1094-9224",
  bibdate =      "Mon Aug 11 19:17:17 MDT 2014",
  bibsource =    "http://portal.acm.org/;
                 http://www.math.utah.edu/pub/tex/bib/tissec.bib",
  abstract =     "Access control policies define what resources can be
                 accessed by which subjects and under which conditions.
                 It is, however, often not possible to anticipate all
                 subjects that should be permitted access and the
                 conditions under which they should be permitted. For
                 example, predicting and correctly encoding all
                 emergency and exceptional situations is impractical.
                 Traditional access control models simply deny all
                 requests that are not permitted, and in doing so may
                 cause unpredictable and unacceptable consequences. To
                 overcome this issue, break-glass access control models
                 permit a subject to override an access control denial
                 if he accepts a set of obligatory actions and certain
                 override conditions are met. Existing break-glass
                 models are limited in how the override decision is
                 specified. They either grant overrides for a predefined
                 set of exceptional situations, or they grant unlimited
                 overrides to selected subjects, and as such, they
                 suffer from the difficulty of correctly encoding and
                 predicting all override situations and permissions. To
                 address this, we develop Rumpole, a novel break-glass
                 language that explicitly represents and infers
                 knowledge gaps and knowledge conflicts about the
                 subject's attributes and the contextual conditions,
                 such as emergencies. For example, a Rumpole policy can
                 distinguish whether or not it is known that an
                 emergency holds. This leads to a more informed decision
                 for an override request, whereas current break-glass
                 languages simply assume that there is no emergency if
                 the evidence for it is missing. To formally define
                 Rumpole, we construct a novel many-valued logic
                 programming language called Beagle. It has a simple
                 syntax similar to that of Datalog, and its semantics is
                 an extension of Fitting's bilattice-based semantics for
                 logic programs. Beagle is a knowledge non-monotonic
                 language, and as such, is strictly more expressive than
                 current many-valued logic programming languages.",
  acknowledgement = ack-nhfb,
  articleno =    "2",
  fjournal =     "ACM Transactions on Information and System Security",
  journal-URL =  "http://portal.acm.org/browse_dl.cfm?idx=J789",
}

Related entries