Title :
QuARC: expressive security mechanisms
Author :
Yesberg, John D. ; Anderson, Mark S.
Author_Institution :
Inf. Technol. Div., Defence Sci. & Technol. Organ., Salisbury, SA, Australia
Abstract :
Security mechanisms in current distributed computer systems only allow a small range of security policies to be implemented. We present the QuARC (Quantitative Authentication, Rule-based roles and Committees) system, which uses some unusual mechanisms that allow it to implement a much wider variety of policies. This allows computer security policies to be much better aligned with organisational policies. The mechanisms discussed are quantitative authentication and vouching, rule-based roles with quantitative privileges, and committees. This paper provides an introduction to these mechanisms and shows how they are used in our system
Keywords :
distributed processing; security of data; QuARC; committees; computer security policies; distributed computer systems; expressive security mechanisms; organisational policies; quantitative authentication; quantitative privileges; rule-based roles; vouching; Australia; Authentication; Biometrics; Computer networks; Computer security; Counting circuits; File servers; Government; Prototypes; Workstations;
Conference_Titel :
New Security Paradigms Workshop, 1995. Proceedings
Conference_Location :
La Jolla, CA
Print_ISBN :
0-8186-7318-4
DOI :
10.1109/NSPW.1995.492342
