RISK BASED ACCESS CONTROL WITH UNCERTAIN AND TIME-DEPENDENT SENSITIVITY

John A. Clark; Juan E. Tapiador; John McDermid; Pau-Chen Cheng; Dakshi Agrawal; Natalie Ivanic; Dave Slogget

Research.Publish.Connect.

*Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Country:
Subject:

Advanced Search Affiliations Search

If you're looking for an exact phrase use quotation marks on text fields.

Proceedings

Proceedings Search *Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

Papers

Papers Search *Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

Authors

Authors Search *Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

Advanced Search

Paper

RISK BASED ACCESS CONTROL WITH UNCERTAIN AND TIME-DEPENDENT SENSITIVITY

Topics: Access Control in Computing Environments; Risk Assessment

In Proceedings of the International Conference on Security and Cryptography - Volume 0ICETE, 5-13, 2010 , University of Piraeus, Greece

Authors: John A. Clark ¹ ; Juan E. Tapiador ¹ ; John McDermid ¹ ; Pau-Chen Cheng ² ; Dakshi Agrawal ² ; Natalie Ivanic ³ and Dave Slogget ⁴

Affiliations: ¹ University of York, United Kingdom ; ² IBM Thomas J. Watson Research Center, United States ; ³ US Army Research Laboratory, United States ; ⁴ LogicaCMG, United Kingdom

Keyword(s): Information sharing, Multi-level security, Risk-based access control.

Related Ontology Subjects/Areas/Topics: Access Control ; Data Engineering ; Databases and Data Security ; Information and Systems Security ; Information Assurance ; Internet Technology ; Risk Assessment ; Web Information Systems and Technologies

Abstract: In traditional multi-level security (MLS) models, object labels are fixed assessments of sensitivity. In practice there will inevitably be some uncertainty about the damage that might be caused if a document falls into the wrong hands. Furthermore, unless specific management action is taken to regrade the label on an object, it does not change. This does not reflect the operational reality of many modern systems where there is clearly a temporal element to the actual sensitivity of information. Tactical information may be highly sensitive right now but comparatively irrelevant tomorrow whilst strategic secrets may need to be maintained for many years, decades, or even longer. In this paper we propose to model both security labels and clearances as probability distributions. We provide practical templates to model both uncertainty and temporally characterized dependencies, and show how these features can be naturally integrated into a recently proposed access control framework based o n quantified risk. (More)

CC BY-NC-ND 4.0

Guest: Register as new SciTePress user now for free.

SciTePress user: please login.

My Papers

You are not signed in, therefore limits apply to your IP address 18.221.165.246

In the current month:

Recent papers: 100 available of 100 total

2⁺ years older papers: 200 available of 200 total

Paper citation in several formats:

A. Clark, J.; E. Tapiador, J.; McDermid, J.; Cheng, P.; Agrawal, D.; Ivanic, N. and Slogget, D. (2010). RISK BASED ACCESS CONTROL WITH UNCERTAIN AND TIME-DEPENDENT SENSITIVITY. In Proceedings of the International Conference on Security and Cryptography (ICETE 2010) - SECRYPT; ISBN 978-989-8425-18-8; ISSN 2184-3236, SciTePress, pages 5-13. DOI: 10.5220/0002935200050013

@conference{secrypt10,
author={John {A. Clark}. and Juan {E. Tapiador}. and John McDermid. and Pau{-}Chen Cheng. and Dakshi Agrawal. and Natalie Ivanic. and Dave Slogget.},
title={RISK BASED ACCESS CONTROL WITH UNCERTAIN AND TIME-DEPENDENT SENSITIVITY},
booktitle={Proceedings of the International Conference on Security and Cryptography (ICETE 2010) - SECRYPT},
year={2010},
pages={5-13},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0002935200050013},
isbn={978-989-8425-18-8},
issn={2184-3236},
}

TY - CONF

JO - Proceedings of the International Conference on Security and Cryptography (ICETE 2010) - SECRYPT
TI - RISK BASED ACCESS CONTROL WITH UNCERTAIN AND TIME-DEPENDENT SENSITIVITY
SN - 978-989-8425-18-8
IS - 2184-3236
AU - A. Clark, J.
AU - E. Tapiador, J.
AU - McDermid, J.
AU - Cheng, P.
AU - Agrawal, D.
AU - Ivanic, N.
AU - Slogget, D.
PY - 2010
SP - 5
EP - 13
DO - 10.5220/0002935200050013
PB - SciTePress