Scalable Access Policy Administration, Opinions and a Research Agenda

Abstract

The emerging world of large, loosely coupled information systems requires major changes to the way we approach security research. For many years, we have proposed construct after construct to enhance the power and scope of policy languages. Unfortunately, this focus has led to models whose complexity is unmanageable, to reinventing technologies that other subdisciplines have done better, and to assumptions that large enterprises simply do not satisfy. We argue that it is time to emphasize a different challenge: radical scale-up. To achieve this, it will be crucial to emphasize simplicity, integration with (non-security) enterprise knowledge, and modularity for both models and administration. This position paper will illustrate the problems, and describe possible ways to achieve the desired capabilities.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jan 01, 2006
Accession Number
AD1125104

Entities

People

  • Arnon Rosenthal

Organizations

  • MITRE Corporation

Tags

Communities of Interest

  • Biomedical
  • Energy and Power Technologies

DTIC Thesaurus Topics

  • Artificial Intelligence Computing
  • Commerce
  • Computer Access Control
  • Computer Programming
  • Computers
  • Computing System Architectures
  • Control Systems
  • Cybersecurity
  • Data Management
  • Database Management Systems
  • Databases
  • Information Security
  • Information Systems
  • Knowledge Management
  • Language
  • Medical Personnel
  • Programming Languages
  • Relational Database Management Systems
  • Relational Databases
  • Security
  • Security Personnel
  • Standards

Readers

  • Artificial Intelligence
  • Economics
  • Systems Analysis and Design