An Algorithmic Approach to Authorization RulesConflict Resolution in Software Security

An Algorithmic Approach to Authorization RulesConflict Resolution in Software Security
Weider D. Yu, Ellora Nayak

Citation
Weider D. Yu, Ellora Nayak. "An Algorithmic Approach to Authorization RulesConflict Resolution in Software Security". Talk or presentation, 12, November, 2008.

Abstract
Conflicts can occur in access control models due to many reasons. Conflict resolution in real-time can be a challenging task due to the complexity of the access control rules. For a large number of access rules for a given service, detecting exactly which rules caused conflicts can be a daunting task. This paper describes an algorithm to resolve conflicts using the ARSL (Authorization Rule Specification Language) model. The algorithm is designed to work on the complexity issues of conflict resolution by preventing the occurrences of conflicts. The algorithm is based on priority of the authorization rules for a given resource and the priority is based on the sequence of occurrences of the authorization rules specified in the ARSL input file.

Electronic downloads

24%20-%20Yu.ppt · application/vnd.ms-powerpoint · 151 kbytes

Citation formats

HTML

Weider D. Yu, Ellora Nayak. <a
href="http://www.truststc.org/pubs/495.html"
><i>An Algorithmic Approach to Authorization
RulesConflict Resolution in Software
Security</i></a>, Talk or presentation,  12,
November, 2008.

Plain text

Weider D. Yu, Ellora Nayak. "An Algorithmic Approach to
Authorization RulesConflict Resolution in Software
Security". Talk or presentation,  12, November, 2008.

BibTeX

@presentation{YuNayak08_AlgorithmicApproachToAuthorizationRulesConflictResolution,
    author = {Weider D. Yu and Ellora Nayak},
    title = {An Algorithmic Approach to Authorization
              RulesConflict Resolution in Software Security},
    day = {12},
    month = {November},
    year = {2008},
    abstract = {Conflicts can occur in access control models due
              to many reasons. Conflict resolution in real-time
              can be a challenging task due to the complexity of
              the access control rules. For a large number of
              access rules for a given service, detecting
              exactly which rules caused conflicts can be a
              daunting task. This paper describes an algorithm
              to resolve conflicts using the ARSL (Authorization
              Rule Specification Language) model. The algorithm
              is designed to work on the complexity issues of
              conflict resolution by preventing the occurrences
              of conflicts. The algorithm is based on priority
              of the authorization rules for a given resource
              and the priority is based on the sequence of
              occurrences of the authorization rules specified
              in the ARSL input file.},
    URL = {http://www.truststc.org/pubs/495.html}
}

Posted by Jessica Gamble on 23 Jan 2009.
For additional information, see the Publications FAQ or contact webmaster at www truststc org.

Notice: This material is presented to ensure timely dissemination of scholarly and technical work. Copyright and all rights therein are retained by authors or by other copyright holders. All persons copying this information are expected to adhere to the terms and constraints invoked by each author's copyright.