Title :
Security policy coordination for heterogeneous information systems
Author :
Hale, John ; Galiasso, Pablo ; Papa, Mauricio ; Shenoi, Sujeet
Author_Institution :
Dept. of Comput. Sci., Tulsa Univ., OK, USA
Abstract :
Coordinating security policies in information enclaves is challenging due to their heterogeneity and autonomy. Administrators must reconcile the semantic diversity of data and security models before negotiating secure interoperation. This paper proposes an architecture that uses mediators and a primitive ticket-based authorization model to manage disparate policies in information enclaves. The formal foundation of the architecture facilitates static and dynamic analysis of global consistency and policy enforcement
Keywords :
authorisation; information systems; open systems; disparate policy management; dynamic analysis; global consistency; heterogeneous information systems; information enclaves; mediators; secure interoperation; security policy coordination; semantic diversity; static analysis; ticket-based authorization model; Access control; Computer science; Computer security; Data security; Databases; Information security; Information systems; Management information systems; Medical treatment; Toxicology;
Conference_Titel :
Computer Security Applications Conference, 1999. (ACSAC '99) Proceedings. 15th Annual
Conference_Location :
Phoenix, AZ
Print_ISBN :
0-7695-0346-2
DOI :
10.1109/CSAC.1999.816031
