Aligning ABAC policies with information security policies using controlled vocabulary
| dc.contributor.author | Kuhlisch, Raik | |
| dc.contributor.author | Bittins, Sören | |
| dc.contributor.editor | Hühnlein, Detlef | |
| dc.contributor.editor | Roßnagel, Heiko | |
| dc.contributor.editor | Schunck, Christian H. | |
| dc.contributor.editor | Talamo, Maurizio | |
| dc.date.accessioned | 2017-06-20T11:39:37Z | |
| dc.date.available | 2017-06-20T11:39:37Z | |
| dc.date.issued | 2016 | |
| dc.description.abstract | Attribute-based Access Control (ABAC) policies are based on mutually processable policy attributes. Assigned permissions in such policies need to be reflected or combined with organisational constraints. Best practice in information security dictates having the operational need to access a particular information artifact independent from the function of the specific application systems. Consequently, any policy regulating the behaviour towards information access must adhere to a minimum degree of mutual semantic expressiveness to be combined and processed with the matching ABAC policy. We show how to detect policy attribute conflicts between ABAC policies and information access policies by means of controlled vocabulary and Semantic Web technologies. | |
| dc.identifier.isbn | 978-3-88579-658-9 | |
| dc.identifier.pissn | 1617-5468 | |
| dc.language.iso | en | |
| dc.publisher | Gesellschaft für Informatik e.V. | |
| dc.relation.ispartofseries | Lecture Notes in Informatics (LNI) - Proceedings, Volume P-264 | |
| dc.title | Aligning ABAC policies with information security policies using controlled vocabulary | |
| dc.type | Text/Conference Paper | |
| gi.citation.endPage | 191 | |
| gi.citation.publisherPlace | Bonn | |
| gi.citation.startPage | 181 | |
| gi.conference.date | 13.-14. October 2016 | |
| gi.conference.location | Rome, Italy |
Dateien
Originalbündel
1 - 1 von 1