dc.contributor
Universitat Oberta de Catalunya. K-ryptography and Information Security for Open Networks (KISON)
dc.contributor.author
García Alfaro, Joaquín
dc.contributor.author
Cuppens, Frederic
dc.contributor.author
Cuppens, Nora
dc.date
2010-02-16T11:58:25Z
dc.date
2010-02-16T11:58:25Z
dc.identifier.citation
GARCÍA, J. (2007). "Management of Exceptions on Access Control Policies". A: 22nd IFIP TC-11 International Information Security Conference. IFIP TC-11. Sandton. 14 - 16 de Maig.
dc.identifier.citation
978-0-387-72366-2
dc.identifier.citation
10.1007/978-0-387-72367-9_9
dc.identifier.uri
http://hdl.handle.net/10609/1416
dc.description.abstract
Peer-reviewed
dc.description.abstract
The use of languages based on positive or negative expressiveness is very common for the deployment of security policies (i.e., deployment of permissions and prohibitions on firewalls through single-handed positive or negative condition attributes). Although these languages may allow us to specify any policy, the single use of positive or negative statements alone leads to complex configurations when excluding some specific cases of general rules that should always apply. In this paper we survey such a management and study existing solutions, such as ordering of rules and segmentation of condition attributes, in order to settle this lack of expressiveness.
dc.rights
https://creativecommons.org/licenses/by-nc-nd/2.5/es/
dc.subject
Computer networks -- Security measures
dc.subject
Computer security
dc.subject
Firewalls (Computer security)
dc.subject
Ordinadors, Xarxes d' -- Mesures de seguretat
dc.subject
Informàtica -- Mesures de seguretat
dc.subject
Tallafocs (Seguretat informàtica)
dc.subject
Ordenadores, Redes de -- Medidas de seguridad
dc.subject
Informática -- Medidas de seguridad
dc.subject
Cortafuegos (Seguridad informática)
dc.title
Management of exceptions on access control policies
dc.type
info:eu-repo/semantics/conferenceObject
