Konferenzbeitrag

Usable Security Policy Specification

Vorschaubild
Volltext URI
Dokumententyp
Text/Conference Paper
Dateien
bitstream_8930.pdf (244.74 KB)
Datum
2016
Autor:innen
Zeitschriftentitel
ISSN der Zeitschrift
Bandtitel
Quelle
Mensch und Computer 2016 – Workshopband
Usable Security and Privacy
Verlag
Gesellschaft für Informatik e.V.
Zusammenfassung
Security policies determine which security requirements have to be met in a domain and how they are implemented organizationally and/or technically. However, their specification at run-time poses a challenge for policy authors (e.g., IT administrators or end users), especially if they are inexperienced in this task. Thus, specification interfaces have to guide the policy author during the specification process. However, matching appropriate specification processes to the policy authors’ individual needs is challenging due to a high variability in the authors’ skill levels and security perceptions. In this paper, we identify existing specification approaches, derive generic specification paradigms and show the feasibility of one of them in an industrial case study.
Beschreibung
Rudolph, Manuel; Feth, Denis (2016): Usable Security Policy Specification. Mensch und Computer 2016 – Workshopband. DOI: 10.18420/muc2016-ws03-0004. Aachen: Gesellschaft für Informatik e.V.. Usable Security and Privacy. Aachen. 4.-7. September 2016
Schlagwörter
Zitierform
DOI
10.18420/muc2016-ws03-0004
Tags
Sammlungen
Workshopband MuC 2016