Most access control mechanisms focus on how to define the rights of users in a precise way to prevent any violation of the access control policy of an organization. However, in many cases it is hard to predefine all access needs, or even to express them in machine readable form. One example of such a situation is an emergency case which may not be predictable and would be hard to express as a machine readable condition. Discretionary overriding of access control is one way for handling such hard to define and unanticipated situations where availability is critical. The override mechanism gives the subject of the access control policy the possibility to override a denied decision, and if the subject should confirm the override, the access wi...
peer reviewedPolicy-based systems rely on the separation of concerns, by implementing independently ...
In access control and digital rights management, del-egation introduces the ability to decentralize ...
The XACML standard defines an XML based language for defining access control policies and a related ...
Obligations are an important and indispensable part of many access control policies, such as those i...
We propose a formal account of XACML, an OASIS standard adhering to the Policy Based Access Control ...
The OASIS XACML standard emerged as a pure declarative language allowing to express access control. ...
The extensible access control markup language (XACML) is the standard ac-cess control policy specifi...
Some software applications are developed to collect, store, and manage users\u27 personal, medical, ...
Abstract. We present a formal, tool-supported approach to the design and maintenance of access contr...
With the widespread use of web services, there is a need for adequate security and privacy support t...
We present a formal, tool-supported approach to the design and maintenance of access control policie...
Abstract. Access control is a critical functionality in distributed sys-tems. Services and resources...
Abstract. We describe adding support for dynamic delegation of authority between users in multiple a...
Over the last few years there has been a rapid development of technologies such as ubiquitous comput...
One of the most challenging problems in managing large, distributed, and heterogeneous networked sys...
peer reviewedPolicy-based systems rely on the separation of concerns, by implementing independently ...
In access control and digital rights management, del-egation introduces the ability to decentralize ...
The XACML standard defines an XML based language for defining access control policies and a related ...
Obligations are an important and indispensable part of many access control policies, such as those i...
We propose a formal account of XACML, an OASIS standard adhering to the Policy Based Access Control ...
The OASIS XACML standard emerged as a pure declarative language allowing to express access control. ...
The extensible access control markup language (XACML) is the standard ac-cess control policy specifi...
Some software applications are developed to collect, store, and manage users\u27 personal, medical, ...
Abstract. We present a formal, tool-supported approach to the design and maintenance of access contr...
With the widespread use of web services, there is a need for adequate security and privacy support t...
We present a formal, tool-supported approach to the design and maintenance of access control policie...
Abstract. Access control is a critical functionality in distributed sys-tems. Services and resources...
Abstract. We describe adding support for dynamic delegation of authority between users in multiple a...
Over the last few years there has been a rapid development of technologies such as ubiquitous comput...
One of the most challenging problems in managing large, distributed, and heterogeneous networked sys...
peer reviewedPolicy-based systems rely on the separation of concerns, by implementing independently ...
In access control and digital rights management, del-egation introduces the ability to decentralize ...
The XACML standard defines an XML based language for defining access control policies and a related ...