DocumentCode :
507878
Title :
The PEI framework for application-centric security
Author :
Sandhu, Ravi
Author_Institution :
Inst. for Cyber Security, Univ. of Texas at San Antonio, San Antonio, TX, USA
fYear :
2009
fDate :
11-14 Nov. 2009
Firstpage :
1
Lastpage :
5
Abstract :
This paper motivates the fundamental importance of application context for security. It then gives an overview of the PEI framework for application-centric security and outlines some of the lessons learned in applying this framework. PEI stands for Policy, Enforcement and Implementation, signifying three distinct layers at which security policy and design decisions need to be made. The framework was introduced by this author in 2006 [35]. It is closely related to the earlier OM-AM framework also introduced by this author in 2000 [32].
Keywords :
security of data; PEI framework; application centric security; policy enforcement and implementation; security design decision; security policy; Application software; Books; Computer security; Data security; Database systems; History; Information security; Invasive software; Lattices; Operating systems;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Collaborative Computing: Networking, Applications and Worksharing, 2009. CollaborateCom 2009. 5th International Conference on
Conference_Location :
Washington, DC
Print_ISBN :
978-963-9799-76-9
Electronic_ISBN :
978-963-9799-76-9
Type :
conf
DOI :
10.4108/ICST.COLLABORATECOM2009.8382
Filename :
5363711
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=507878
بازگشت