• DocumentCode
    2651582
  • Title

    A Framework for Managing and Analyzing Changes of Security Policies

  • Author

    Brucker, Achim D. ; Petritsch, Helmut

  • Author_Institution
    SAP Res., Karlsruhe, Germany
  • fYear
    2011
  • fDate
    6-8 June 2011
  • Firstpage
    105
  • Lastpage
    112
  • Abstract
    Modern enterprise systems need to comply to complex security policies. Due to legal regulations such as Basel II or HIPAA, the enforcement of these security policies needs to be carefully monitored and analyzed. The monitoring of complex and often dynamic access control requirements results in a vast amount of information that needs to be analyzed both in case of incidents and during regular audits. We present an extensible framework for managing and analyzing security policies during their whole life cycle. Our framework integrates versioning of policies and log files with policy animation, static analysis, and debugging techniques. For example, this combination allows for comparing different versions of security policies or the replaying and animation of system traces based on log files.
  • Keywords
    authorisation; business data processing; computer animation; enterprise resource planning; law; program debugging; Basel II; HIPAA; complex security policy; debugging technique; dynamic access control requirement; legal regulation; modern enterprise system; policy animation; static analysis; Access control; Context; Nervous system; Runtime; Surgery;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Policies for Distributed Systems and Networks (POLICY), 2011 IEEE International Symposium on
  • Conference_Location
    Pisa
  • Print_ISBN
    978-1-4244-9879-6
  • Electronic_ISBN
    978-0-7695-4330-7
  • Type

    conf

  • DOI
    10.1109/POLICY.2011.47
  • Filename
    5976802
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2651582