Title :
An Algorithmic Approach to Authorization Rules Conflict Resolution in Software Security
Author :
Yu, Weider D. ; Nayak, Ellora
Author_Institution :
Comput. Eng. Dept., San Jose State Univ., San Jose, CA
fDate :
July 28 2008-Aug. 1 2008
Abstract :
Conflicts can occur in access control models due to many reasons. Conflict resolution in real-time can be a challenging task due to the complexity of the access control rules. For a large number of access rules for a given service, detecting exactly which rules caused conflicts can be a daunting task. This paper describes an algorithm to resolve conflicts using the ARSL (Authorization Rule Specification Language) model. The algorithm is designed to work on the complexity issues of conflict resolution by preventing the occurrences of conflicts. The algorithm is based on priority of the authorization rules for a given resource and the priority is based on the sequence of occurrences of the authorization rules specified in the ARSL input file.
Keywords :
authorisation; specification languages; Authorization Rule Specification Language; access control; access rule; conflict resolution; software security; Access control; Algorithm design and analysis; Application software; Authorization; Computer applications; Computer security; Context-aware services; Software algorithms; Specification languages; Web services; access control; authorization; conflict resolution; security policy; software security;
Conference_Titel :
Computer Software and Applications, 2008. COMPSAC '08. 32nd Annual IEEE International
Conference_Location :
Turku
Print_ISBN :
978-0-7695-3262-2
Electronic_ISBN :
0730-3157
DOI :
10.1109/COMPSAC.2008.229
