{"title":"安全自动机集成了XACML和安全验证","authors":"Juan Deng, R. Brooks, J. Taiber","doi":"10.1109/SECON.2010.5453856","DOIUrl":null,"url":null,"abstract":"Extensible Access Control Markup Language is an OASIS ratified standard that defines and enforces control policies. XACML bases access control on static user or resource attributes, which fails for a large class of security policies. Security automata specify security policies that base decisions on changing user or resource states. This paper extends XACML to support security automata. We demonstrate the extended XACML on a location-aware application for connected vehicles. We analyze the security of the extended XACML system. We secure the system with TLS and verify the system security using the Failure Divergence Refinement (FDR) and Casper tools.","PeriodicalId":286940,"journal":{"name":"Proceedings of the IEEE SoutheastCon 2010 (SoutheastCon)","volume":"2013 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2010-03-18","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":"{\"title\":\"Security automata integrated XACML and security validation\",\"authors\":\"Juan Deng, R. Brooks, J. Taiber\",\"doi\":\"10.1109/SECON.2010.5453856\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Extensible Access Control Markup Language is an OASIS ratified standard that defines and enforces control policies. XACML bases access control on static user or resource attributes, which fails for a large class of security policies. Security automata specify security policies that base decisions on changing user or resource states. This paper extends XACML to support security automata. We demonstrate the extended XACML on a location-aware application for connected vehicles. We analyze the security of the extended XACML system. We secure the system with TLS and verify the system security using the Failure Divergence Refinement (FDR) and Casper tools.\",\"PeriodicalId\":286940,\"journal\":{\"name\":\"Proceedings of the IEEE SoutheastCon 2010 (SoutheastCon)\",\"volume\":\"2013 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2010-03-18\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"2\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Proceedings of the IEEE SoutheastCon 2010 (SoutheastCon)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/SECON.2010.5453856\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the IEEE SoutheastCon 2010 (SoutheastCon)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SECON.2010.5453856","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Security automata integrated XACML and security validation
Extensible Access Control Markup Language is an OASIS ratified standard that defines and enforces control policies. XACML bases access control on static user or resource attributes, which fails for a large class of security policies. Security automata specify security policies that base decisions on changing user or resource states. This paper extends XACML to support security automata. We demonstrate the extended XACML on a location-aware application for connected vehicles. We analyze the security of the extended XACML system. We secure the system with TLS and verify the system security using the Failure Divergence Refinement (FDR) and Casper tools.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
