ScienceDirect® Home Skip Main Navigation Links
You have guest access to ScienceDirect. Find out more.
 
Home
Browse
My Settings
Alerts
Help
 Quick Search
 Search tips (Opens new window)
    Clear all fields    
Data & Knowledge Engineering
Volume 49, Issue 3, June 2004, Pages 287-309
 
Font Size: Decrease Font Size  Increase Font Size
 Abstract - selected
Article
Purchase PDF (414 K)

  E-mail Article   
  Add to my Quick Links   
Bookmark and share in 2collab (opens in new window)
Request permission to reuse this article
  Cited By in Scopus (3)
 
 
 
Related Articles in ScienceDirect
View More Related Articles
 
View Record in Scopus
 
doi:10.1016/j.datak.2003.09.003    How to Cite or Link Using DOI (Opens New Window)
Copyright © 2003 Elsevier B.V. All rights reserved.

Real-time update of access control policies

Indrakshi RayCorresponding Author Contact Information, E-mail The Corresponding Author

Department of Computer Science, Colorado State University, 601 S Howes Street, Fort Collins, CO 80523-1873, USA

Received 1 March 2003; 
Revised 8 September 2003; 
accepted 9 September 2003. 
Available online 9 December 2003.

Purchase the full-text article



References and further reading may be available for this article. To view references and further reading you must purchase this article.

Abstract

Access control policies are security policies that govern access to resources. The need for real-time update of such policies while they are in effect and enforcing the changes immediately, arise in many scenarios. Consider, for example, a military environment responding to an international crisis, such as a war. In such situations, countries change strategies necessitating a change of policies. Moreover, the changes to policies must take place in real-time while the policies are in effect. In this paper we address the problem of real-time update of access control policies in the context of a database system. Access control policies, governing access to the data objects, are specified in the form of policy objects. The data objects and policy objects are accessed and modified through transactions. We consider an environment in which different kinds of transactions execute concurrently some of which may be policy update transactions. We propose algorithms for the concurrent and real-time update of security policies. The algorithms differ on the basis of the concurrency provided and the semantic knowledge used.

Author Keywords: Security policies; Concurrency control; Transaction management

Article Outline

1. Introduction
2. Our model
3. A simple algorithm for policy update
Conflicting operations
Policy-secure transaction
4. Towards a semantic-based approach for policy update
4.1. Concurrency control based on knowledge of policy change
5. Semantics-based concurrency control algorithm
Commutativity of transactions
Commute set of ty(Ti)
5.1. Concurrency control mechanism
6. Related work
7. Conclusion and future work
Acknowledgements
Appendix A
References
Vitae



Data & Knowledge Engineering
Volume 49, Issue 3, June 2004, Pages 287-309
 
Home
Browse
My Settings
Alerts
Help
Elsevier.com (Opens new window)
About ScienceDirect  |  Contact Us  |  Information for Advertisers  |  Terms & Conditions  |  Privacy Policy
Copyright © 2008 Elsevier B.V. All rights reserved. ScienceDirect® is a registered trademark of Elsevier B.V.