Generation of Transmission Control Rules Compliant with Existing Access Control Policies

Abstract : Access Control (AC) is a well known mechanism that allows access restriction to resources. Nevertheless, it does not provide notification when a resource is retransmitted to an unauthorized third party. To overcome this issue, one can use mechanisms such as Data Loss/Leak Prevention (DLP) or Transmission Control (TC). These mechanisms are based on policies that are defined by security experts. Unfortunately, these policies can contradict existing AC rules, leading to security leakage (i.e. a legitimate user is allowed to send a resource to someone who has no access rights in the AC). In this article, we aim at creating TC policies that are compliant with existing AC policies. To do so, we use a mapping mechanism that generates TC rules directly from existing AC policies. Thanks to the generated rules, our solution can make inferences to improve existing AC and enhance security knowledge between infrastructures.
Type de document :
Communication dans un congrès
Security and Privacy in Communication Networks (SECURECOMM 2015), Oct 2015, Dallas, United States. Security and Privacy in Communication Networks 11th International Conference, SecureComm 2015, Dallas, TX, USA, October 26-29, 2015, Revised Selected Papers, 2016, Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering. 〈10.1007/978-3-319-28865-9_24〉
Liste complète des métadonnées

Littérature citée [18 références]  Voir  Masquer  Télécharger

https://hal.archives-ouvertes.fr/hal-01318566
Contributeur : Yoann Bertrand <>
Soumis le : jeudi 19 mai 2016 - 16:40:29
Dernière modification le : samedi 21 mai 2016 - 01:05:29

Fichier

paper_64_camready (1).pdf
Fichiers produits par l'(les) auteur(s)

Identifiants

Collections

Citation

Yoann Bertrand, Mireille Blay-Fornarino, Karima Boudaoud, Michel Riveill. Generation of Transmission Control Rules Compliant with Existing Access Control Policies. Security and Privacy in Communication Networks (SECURECOMM 2015), Oct 2015, Dallas, United States. Security and Privacy in Communication Networks 11th International Conference, SecureComm 2015, Dallas, TX, USA, October 26-29, 2015, Revised Selected Papers, 2016, Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering. 〈10.1007/978-3-319-28865-9_24〉. 〈hal-01318566〉

Partager

Métriques

Consultations de
la notice

81

Téléchargements du document

54