Skip to Main content Skip to Navigation
Conference papers

Similarity measure for security policies in service provider selection

Abstract : The interaction between different applications and services requires expressing their security properties. This is typically defined as security policies, which aim at specifying the diverse privileges of different actors. Today similarity measure for comparing security policies becomes a crucial technique in a variety of scenarios, such as finding the cloud service providers which satisfy client's security concerns. Existing approaches cover from semantic to numerical dimensions and the main work focuses mainly on XACML policies. However, few efforts have been made to extend the measure approach to multiple policy models and apply it to concrete scenarios. In this paper, we propose a generic and light-weight method to compare and evaluate security policies belonging to different models. Our technique enables client to quickly locate service providers with potentially similar policies. Comparing with other works, our approach takes policy elements' logic relationships into account and the experiment and implementation demonstrate the efficiency and accuracy of our approach.
Complete list of metadata
Contributor : Bibliothèque Télécom Bretagne <>
Submitted on : Friday, November 4, 2016 - 5:16:17 PM
Last modification on : Tuesday, April 20, 2021 - 10:32:06 AM

Links full text



Yanhuang Li, Nora Cuppens-Boulahia, Jean-Michel Crom, Frédéric Cuppens, Vincent Frey, et al.. Similarity measure for security policies in service provider selection. ICISS 2015 : 11th International Conference on Information Systems Security, Dec 2015, Kolkata, India. pp.227 - 242, ⟨10.1007/978-3-319-26961-0_14⟩. ⟨hal-01392794⟩



Record views