DocumentCode
2344301
Title
A framework for expressing models of security policy
Author
Dobson, John E. ; McDermid, John A.
Author_Institution
Comput. Lab., Newcastle Upon Tyne Univ., UK
fYear
1989
fDate
1-3 May 1989
Firstpage
229
Lastpage
239
Abstract
The authors first describe some issues that arise from the interplay between the security requirements for an integrated project support environment (IPSE) for the development of a trusted system, and the security requirements of the trusted system itself. All of these issues derive from security policy and the modeling of security policy. A framework is then presented which allows security policies to be expressed in the context of the enterprise whose needs the trusted system is intended to serve. Finally some possible applications of the framework are used to indicate how security policies affect design decision-making, security policy conflict detection, and security risk evaluation
Keywords
project support environments; security of data; design decision-making; framework; integrated project support environment; security policy; security policy conflict detection; security requirements; security risk evaluation; trusted system; Authorization; Computer science; Data privacy; Data security; Decision making; Fuses; Information security; Stress; Terminology;
fLanguage
English
Publisher
ieee
Conference_Titel
Security and Privacy, 1989. Proceedings., 1989 IEEE Symposium on
Conference_Location
Oakland, CA
Print_ISBN
0-8186-1939-2
Type
conf
DOI
10.1109/SECPRI.1989.36297
Filename
36297
Link To Document