• DocumentCode
    538407
  • Title

    The PEI framework for application-centric security

  • Author

    Sandhu, Ravi

  • Author_Institution
    Inst. for Cyber Security, Univ. of Texas at San Antonio, San Antonio, TX, USA
  • fYear
    2009
  • fDate
    20-22 May 2009
  • Firstpage
    1
  • Lastpage
    6
  • Abstract
    This paper motivates the fundamental importance of application context for security. It then gives an overview of the PEI framework for application-centric security and outlines some of the lessons learned in applying this framework. PEI stands for Policy, Enforcement and Implementation, signifying three distinct layers at which security policy and design decisions need to be made. The framework was introduced by this author in 2006. It is closely related to the earlier OM-AM framework also introduced by this author in 2000.
  • Keywords
    security of data; PEI; application centric security; security policy; Access control; Books; Computational modeling; Computer security; Computers; Context;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Security and Communication Networks (IWSCN), 2009 Proceedings of the 1st International Workshop on
  • Conference_Location
    Trondheim
  • Print_ISBN
    978-1-61284-168-7
  • Electronic_ISBN
    978-82-997105-1-0
  • Type

    conf

  • Filename
    5683065
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=538407